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Cisco certifications are globally respected IT certification programs for Wide 
Area Networking (Internetworking). 

Cisco has five levels of certification: 

- CCENT (Cisco Certified Entry Networking Technician) 

- CCNA (Cisco Certified Network Associate) 

- CCNP (Cisco Certified Network Professional) 

- CCIE (Cisco Certified Internetworking Expert) 

- CCAr (Cisco Certified Architect) 




CCNAv3 Certification Track 
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* There are 2 tracks for CCNA examination : 

* Two paper track 

- ICND 1 (100-105) (On passing this exam the candidate is CCENT) 

- ICND 2 (200-105) (On passing both exams the candidate is CCNA) 

OR 

* One paper track 

- CCNA (200-125) (On passing this exam the candidate is CCNA) 
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CCNAv3 Certification 
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* Cisco Certified Network Associate R&S exam is the associate level exam into 
Wide Area Networking. 


Exam Number 
Duration 

Number of questions 
Passing Mark 
Available Languages 
Exam Questions 


200-125 
90 Minutes 
50-60 questions 
825 / 1000 
English 

Multiple-choice single answer 
Multiple-choice multiple answer 
Drag-and-drop 
Simulations (Simlet) 

Scenario Based (Testlet) 
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Reference Books 
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• CCNA ICND 1 (100-105) - Wendell Odom - Cisco Press 

• CCNA ICND 2 (200-105) - Wendell Odom - Cisco Press 

OR 

• CCNA (200-125) - Wendell Odom - Cisco Press 
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Day wise Schedule 


DAY 
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7 
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10 
11 
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Basics of Networking 

IP Addressing - IPv4 

IP Addressing - IPv6 and OSi layers 

External & Internal Components of Router 

Initial configuration of Router for IPv4 & IPv6 Network 

WAN Connectivity and Configuration 

Subnetting (FLSM, VLSM) 

Introduction to Routing and Static Routing for IPv4 & IPv6 Network 
Introduction to Dynamic Routing and RIP for IPv4 & IPv6 Network 
OSPF - Single Area for IPv4 & IPv6 Network 

OSPF - Multiple Area for IPv4 Network and EIGRP for IPv4 Network 
EIGRP for IPv6 Network 


Basic of 
Networking 


Basic of Router 
and 

Router Connectivity 


Routing 
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DAY 

TOPIC | 

13 

Introduction to Switch, Initial configuration, Vlan &Trunking 

14 

DTP, VTP, Irvtervlan, CDP, Port Security 

15 

STP, Portfast, BPDU.ETHERCHANNEL & SPAN 

16 

m 

Access Control list - IPv4 

17 

Access Control List - IPv6 

18 

Default Routing and NAT 

19 

HSRPj IP5LA&EBGP 

20 

LOCAL AUTHENTICATION, AAA, SSH and VPN 

21 

Syslog, NTP, SNMP, DHCP, IPv6 

22 

Password Recovery and Backup of IOS with TFTP, 5CP, FTP 

23 

PPP Authentication and PPPoE 

24 

Live setup and Q&A 


Switching 


Security 


Network Services 
and 

Advance Concepts 




Basics of Networking 



5 







Network 
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Interconnection of two or more devices is called as a network. 


* The communication between two or more interconnected devices is called 
networking. 

* Establishing connectivity between devices with the help of Hub / Switch / 
Access Point for Data Communication. 



Types of Networks 
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* LAN - Local Area Network 

* MAN - Metropolitan Area Network 

* WAN - Wide Area Network 
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LAN 
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* Local Area Networks are used to connect Interconnection of PCs and other 
Network devices that are very close together in a limited area such as a floor of 
a building, a building itself or within a campus. 
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* Metropolitan Area Network are used to connect networking devices that may 
span around the entire city. 
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WAN 
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* Wide Area Networks which connects two or more LANs present at different 
geographical locations. 




Internet 
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* Internet is a massive network of networks, a networking infrastructure. 


It connects millions of computers together globally, forming a network in which 
any computer can communicate with any other computer as long as they are 
both connected to the Internet. 


INTERNET 
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Network Topology 
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* Bus Topology 

* Ring Topology 

* Star Topology 

* Mesh Topology 



Network Topology 
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Bus Topology star Topology 
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Setting up a Network 
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* Network Interface Card 

* Media 

* Network Devices 



Network Interface Card (NIC) 
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* NIC is the interface between the computer and the network 

* It is also known as the Lan card or Ethernet card 

* Ethernet cards have a unique 48 bit address called as MAC (Media access 
control) address 

- MAC address is also called as Physical address or hardware address 

- The 43 bit MAC address is represented as 12 Hexa-decimal digits 


- Example: 0016.D3FC.603F 

* Network cards are available in different speeds 

- Ethernet (10 Mbps) 

- Fast Ethernet (100 Mbps) 

- Gigabit Ethernet (1000 Mbps) 




10 










Media 
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The purpose of the media is to transport bits from one machine to another. 


Media 


Guided 


Unguided 



Media 


ZOOM 

^TECHNOLOGIES 




Co-axial cable 


UTP Cable 



SIP Cable 
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Types of Twisted Pair cables 


Category 

DTR 

Purpose 

Connector 

CAT 5 

100 Mbps 

Fast Ethernet 

RJ 45 

CAT 5e 

500 Mbps 


RJ 45 

CATS 

1000 Mbps 

Gigabit Ethernet 

RJ 45 



Networking Devices 
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* Switch 

- It is a hardware device that centralizes communications between wired 
devices connected within a LAN 

* Wireless Access Point 


- It is a hardware device that centralizes communications between wireless 
and wired devices within a LAN 


* Router 

- It is a device which enables communication between two or more different 
logical networks. 
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Networking Devices 
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* Firewall 


- It is a device which protects the network from unauthorized access 

- It allows and denies the network traffic based upon policy configured. 



LAN Cable types 


* Straight Through Cable 

* Crossover Cable 

* Rollover Cable 


I ZOOM I 
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Straight Through Cable 
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• Generally used for connecting two devices of different types 








\\vv\\v\\\v\\\vv\\vv\ vs 


1 

2 

3 

4 

5 

6 

7 

8 


EIA/TIA 568B 




Crossover Through Cable 
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* Generally used for connecting same type of devices. 
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Rollover Cable 
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Generally used for connecting Router console port to Computer COM port. 
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Network Diagram 
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IP Address 
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* IP Address Is a Logical Address 

* It is a Network Layer address (Layer 3) 

* Two Versions of IP: 

- IP version 4 is a 32 bit address 

- IP version 6 is a 128 bit address 



IP version 4 


ZOOM 
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* Bit is represent by 0 or 1 (i.e. Binary) 

* IP address in binary form (32 bits): 
01010101000001011011111100000001 

* 32 bits are divided into 4 Octets: 


First Octet Second Octet 



01010101. 00000101. 
* IP address in decimal form: 

85.5.191.1 


Third Octet 



10111111 . 


Forth Octet 



00000001 
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IPv4 
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Taking Example for First Octet : 
Total 8 bits. Value will be 0's and l's 
i.e, 2 s = 256 combination 
27 2 s 2 4 2* 2 2 2* 2° 

000 0000 0=0 
000 0000 1=1 
000 0001 0=2 
000 0001 1=3 
000 0010 0=4 



111 1111 1=255 


r ^ 

Total IP Address Range 
0 * 0 * 0 . 0 
to 

25S.255.25S.255 

L ^ 



Binary to Decimal 
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0 

0 

0 

0 

1 

0 

1 

0 

10 

1 

0 

1 

0 

1 

0 

0 

0 

168 

1 

0 

1 

0 

1 

1 

0 

0 

172 


00 0 10000 




18 















Decimal to Binary 
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152 10011000 


200 

1 

1 

0 

0 

1 

0 

0 

0 


15 00001111 


240 

1 

1 

1 

1 

0 

0 

0 

0 



IP Address Classification 
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IP address are divided into 5 Classes 


• CLASS A 

• CLASS B 

• CLASS C 

• CLASS D 

• CLASS E 


^j>- Used in LAN & WAN 


Reserved for Multicasting 
Reserved for Research & Development 
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Priority Bit 
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* Priority Bit is used for IP Address classification. 

• Most significant bit(s) from the first octet are selected for Priority Bit(s). 


- Class A priority bit is 0 

- Class B priority bits are 10 

- Class C priority bits are 110 

- Class D priority bits are 1110 

- Class E priority bits are 1111 



Class A Range 
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• In Class A : First bit of the first octet is reserved as priority bit, bit value is zero. 
Gxxxxxxx. xxxxxxxx. xxxxxxxx. xxxxxxxx 


2 7 2 s 2 s 2 4 2 3 2 2 2 1 2° 

000 0000 0=0 
000 0000 1=1 
000 0001 0=2 
000 0001 1=3 
0 0=4 

011 1111 1=127 


r 

Class A Range 



0 . 0 . 0 . 0 to 


L 

127 . 255 . 255 .255 

J 




ecu 

C C N P 
C C N A 
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Class B Range 


* In Class B : First two bits of the first octet are reserved as priority bits, bit value 
as 10. 


lOxxxxxx. xxxxxxxx. xxxxxxxx 
77 2 6 2 5 2 4 77 77 2 1 2° 


1 

0 

0 

0 

0 

0 

0 

0 = 128 

1 

0 

0 

0 

0 

0 

0 

1 = 129 

1 

0 

0 

0 

0 

0 

1 

0 = 130 

1 

0 

0 

0 

0 

0 

1 

1 = 131 

1 

0 

0 

0 

0 

1 

0 

0 = 132 

1 

0 

1 

1 

1 

1 

1 

1 = 191 


xxxxxxxx 



Class B Range 



128 .0.0.0 to 



191 . 255 . 255 .255 




Class C Range 
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• In Class C : First three bits of the first octet are reserved as priority bits, bit 
value as 110. 


llOxxxxx. xxxxxxxx. xxxxxxxx. xxxxxxxx 


2 7 2 6 2 s 2 4 2 3 2 2 2 1 2° 

0 0 0 0 0 = 192 

0 0 0 0 1 = 193 

0001 0 = 194 

0001 1 = 195 

0 0 1 0 0 = 196 

1111 1 = 223 


110 

110 

110 

110 

110 

1 1 0 



Class C Range 



192 . 0 . 0 . 0 to 


L. 

223 . 255 . 255 .255 

j 
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Class D Range 
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• In Class D : First four bits of the first octet are reserved as priority bits, bit value 
as 1110. 

lllOxxxx. xxxxxxxx. xxxxxxxx. xxxxxxxx 

2 ^ 2 2 2 1 2 ° 

0 0 0 0 = 224 
0 0 0 1 = 225 
0 0 1 0 = 226 
0 0 1 1 = 227 

010 0 = 228 

111 1 = 239 


t 


Class D Range 
224 .0.0.0 to 
239 . 255 . 255 .255 


V, 


2 7 2 6 2 5 2 4 

1110 

1110 

1110 

1110 

1110 

1110 



Class E Range 
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• In Class E : First four bits of the first octet are reserved as priority bits, bit value 
as 1111. 


llllxxxx. xxxxxxxx. xxxxxxxx. xxxxxxxx 


2 7 2 6 2 5 2 4 2 3 2 2 2 1 2 ° 


1 

1 

1 

1 

0 

0 

0 

0 

= 

240 

1 

1 

1 

1 

0 

0 

0 

1 

= 

241 

1 

1 

1 

1 

0 

0 

1 

0 

= 

242 

1 

1 

1 

1 

0 

0 

1 

1 

— 

243 

1 

1 

1 

1 

0 

1 

0 

0 

— 

244 

1 

1 

1 

1 

1 

1 

1 

1 

— 

255 


Class E Range 
240 .0.0.0 to 
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Ranges 
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Class A Range 
0 . 0 . 0 . 0 to 
127.255.255.255 


Class B Range 
128 .0.0.0 to 
191.255.255.255 


Class C Range 
192 .0.0.0 to 


223 . 255 . 


r ^ 


Class P Range 
224 .0.0.0 to 


239 




Identifying Class 
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10.1.100.1 


192.1.1.1 


224.0.0.10 

120.200.1.1 


150.17.2.200 

B 

17.1.256.1 

Invalid IP Address 


' 

ICClEl 


r. 

GGHP 
C N 
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Octet Format 


IP address is divided into Network & Host Portion 
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CLASS 

A is written as 

N.H.H.H 

CLASS 

B is written as 

N.N.H.H 

CLASS 

C is written as 

N.N.N.H 



CLASS A - No. Networks & Hosts 
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* Class A Octet Format is N . H . H . H 

Network bits : 8 Host bits : 24 

* No. of Networks 

— 2 no °f network bits- Priority bit 

= 2 81 {-1 is Priority Bit for Class A) 

= 2 7 

= 128 -2 (-2 is for 0& 127 Network) 

- 126 Networks 


• No. of Host 
— 2 nooftl<>stbits -2 

= 2 Z4 - 2 (-2 is for Network ID & Broadcast ID) 

= 16777216-2 

= 16777214 Hosts/Network 

/" rrm \ 

II — !W 
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CLASS B - No. Networks & Hosts 
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• Class B Octet Format is N . N . H . H 

Network bits : 16 Host bits : 16 

* No. of Networks 

_ 2 no of network bits- Priority bit 

= 2 16 2 (-2 is Priority Bit for Class B) 

_ 2^4 

- 16384 Networks 


* No. of Host 

— 2 no ^OSt k' ts -2 

= 2 16 - 2 (*2 is for Network ID & Broadcast ID) 

= 65536-2 

= 65534 Hosts/Network 



CLASS C - No. Networks & Hosts 
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* Class C Octet Format is N . N . N . H 

Network bits : 24 Host bits : 8 

• No. of Networks 

= 2 no network bits- Priority bit 

= 2 24 ' 3 {-3 is Priority Bit for Class C) 

= 2 Z1 

= 2097152 Networks 


* No. of Host 

— 2 no of host bits .2 

= 2 s - 2 (-2 is for Network ID 8t Broadcast ID) 

= 256 - 2 

= 254 Hosts/Network 
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Network & Broadcast Address 
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* Network address: IP address with all bits as ZERO in the host portion. 

* Broadcast address: IP address with all bits as ONES in the host portion. 

* Valid IP Addresses lie between the Network Address and the Broadcast 
Address. 

* Only Valid IP Addresses are assigned to hosts/clients 



Example - Class A 
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* Class A : N.H.H.H 

Network Address : Oxxxxxxx.OOOOOOOO. 00000000. 00000000 
Broadcast Address : Oxxxxxxx. 11111111. 11111111. 11111111 
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Example - Class B 
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• Class B : N.N.H.H 

Network Address : lOxxxxxx.xxxxxxxx. 00000000.00000000 
Broadcast Address : lOxxxxxx.xxxxxxxx.llllllll. 11111111 


Class B 

172.16.0. 0 

172.16.0. 1 

172.16.0. 2 

172.16.0. 3 


Network Address 


Valid IP Addresses 



172.16.255.254 

172.16.255.255 




Example - Class C 
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* Class C : N.N.N.H 

Network Address : llOxxxxx.xxxxxxxx.xxxxxxxx.OOOOOOOO 
Broadcast Address : llOxxxxx.xxxxxxxx.xxxxxxxx. 11111111 


102,168,1,0 

192.168.1.1 

192.168.1.2 

192.168.1.3 


Network Address 


Valid IP Addresses 


( 


' 

VO 0 1 El 


r. 

CGNP 
C N 



192.168.1.254 

192.168.1.255 


B^adeast Add res* 



27 






Identifying Network Address and Broadcast Address 
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IP Address 

Network Address and Broadcast Address 

120.1.1.1 

120.0.0.0 and 120.255.255.255 

172.16.1.1 

172.16.0.0 and 172.16.255.255 

10.100.1.10 

10.0.0.0 and 10.255.255.255 

192.168.1.10 

192.168.1.0 and 192.168.1.255 

150.10.1.1 

150.10.0.0 and 150.10.255.255 



Identifying Valid IP Address 
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IP Address 

Valid Address 

119.1.1.1 

Yes 

172.17.255.255 

No 

11.1.0.0 M 

Yes 

195.255.0.255 

No 

142.10.0.0 

No 
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Subnet Mask 
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* Subnet Mask differentiates the Network and Host portions of an IP address 

* Represented with all l's in the network portion and with all 0's in the host 
portion. 



Subnet Mask - Examples 


* Class A : N.H.H.H 
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nun 1 1.00000000 . oooooooo. oooooooo 

Default Subnet Mask for Class A is 255.0.0.0 


• Class B : N.N.H.H 

11111111.11111111.00000000.00000000 
Default Subnet Mask for Class B is 255.255.0.0 


• Class C : N.N.N.H 

11111111.11111111.11111111.00000000 
Default Subnet Mask for Class C is 255.255.255.0 
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Default subnet mask 
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IP Address 

Default subnet mask 

17.1.1.1 

255.0.0.0 

202.1.0.18 

255.255.255.0 

190.10.1.1 

255.255.0.0 

102.10.1.10 

255.0.0.0 

192.0.0.1 

255.255.255.0 



How Subnet Mask Works ? 


IP Address : 192.168.1.1 
Subnet Mask : 255.255.255.0 

ANDING PROCESS : 

192.168.1.1 = 11000000.10101000.00000001.00000001 

255.255.255.0 = 11111111.11111111.11111111.00000000 


192.168.1.0 = 11000000.10101000.00000001.00000000 


ZOOM 
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* The output of an AND table is 1 if both its inputs are 1. 
■ For all other possible inputs the output is 0. 
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Private IP Address 
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* There are certain addresses in each class of IP address that are reserved for 
Private Networks. These addresses are called private addresses. 

* These addresses are not Routable (or) valid on Internet. 



Class A 

10.0.0.0 to 10.255.255.255 



Class B 

172.16.0.0 to 172.31.255.255 



Class C 

192.168.0.0 to 192.168.255.255 




Public IP Address v/s Private IP 


r. 
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ClP 



Private IP Address 


» Used on the Internet 
(i.e. Public Network) 

• It should be unique over the 
Internet. 

• Assigned by the Internet Service 
Provider. 

• Need to purchased from Internet 
Service Provider. 


Used within the Organization 
(i.e. Private Network or LAN) 

It should be unique within the LAN 
or Organization 

Assigned by Network Administrator 




• FREE 




P 

ICG 111 

m 

Ci 

c 

CGNP 
C N 

A 
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IPv6 Addresses 
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* IPv6 is 128 bit address 

* It is represented as 32 hexadecimal numbers arranged in 8 quartets of 4 
hexadecimal digit separated by a colon " : " 

First Second Third Forth Fifth Sixth Seventh Eighth 

Quartet Quartet Quartet Quartet Quartet Quartet Quartet Quartet 



xxxx : xxxx : xxxx : xxxx : xxxx : xxxx : xxxx : xxxx 


* IPv6 address in Hexadecimal form: 

i.e. 2001:0000:0000:C15C:0000:0000:09c4:1300 


* Not case sensitive for A, B, C, D, E and F 
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Binary to Hexadecimal Table 
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Binary Decimal Hexa- 

8 4 2 1 decimal 


10 0 1 9 9 

10 10 10 A 


0 

0 

1 

0 

2 

2 

1 

0 

1 

1 

11 

B 

0 

0 

1 

1 

3 

3 

1 

1 

0 

0 

12 

C 

0 

1 

0 

0 

4 

4 

1 

1 

0 

1 

13 

D 

0 

1 

0 

1 

5 

5 

1 

1 

1 

0 

14 

E 

0 

1 

1 

0 

6 

6 

1 

1 

1 

1 

15 

F 


0 

1 

1 

1 

7 

7 

1 

0 

0 

0 

8 

8 



Binary to Hexadecimal 
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E 

1 

1 

1 

0 





9 

1 

0 

0 

1 



2F 

0 

0 

1 

0 

1 

1 

1 

1 




4FD 

0 

1 

0 

0 

1 

1 

1 

1 

1 

1 

0 

1 





01E8 

0 

0 

0 

0 

0 

0 

0 

1 

1 

1 

1 

0 

1 

0 

0 

0 

2001 

0 

0 

1 

0 

0 

0 

0 

0 

0 

0 

0 

0 

0 

0 

0 

1 

FE80 

1 

1 

1 

1 

1 

1 

1 

0 

1 

0 

0 

0 

0 

0 

0 

0 


HEXADECIMAL CHART 



Rules for representing of IPv6 Address 
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* Omission of ZEROS 

- Leading zero in any quartet can be omitted. 

- Four successive zeros in a Quartet can be substituted by one zero. 

* Replacing Successive Fields of Zeros with 

- Multiple quartet with zero can be represented as :: but only once in a 
address 
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Omission of ZERO'S 
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IPv6 Address 

IPv6 Address after Omission of ZERO'S 

2001 : 0DB8 : 0001 : 1000 : 0000 : 0000 : OefO : bcOO 

2001 : DBS : 1 : 1000 : 0 : 0 : efO : bcOO 

2001 : 0DB8 : OlOd : 000a : OOdd : cOOO : eOOO : 0001 

2001 : DBS : lOd : a : dd : cOOO : eOOO : 1 

2001 : 2222 : 0000 : 0000 : 0000 : 0000 : 0000 : 0001 

2001 : 2222 :Q:0:0:0;0:1 

20DB : C0A8 : 0101 : 0000 : 0000 : 0000 : 0000 : 0420 

20DB : C0A8 : 101 : 0 : 0 : 0 : 0 : 420 

2000 : 0000 : 0000 : 4DAP : 0023 : 0046 : OOBB : 0101 

2000 : 0 : 0 : 4 DAD : 23 : 46 : BB : 101 

FF02 : 0000 : 0000 : 0000 : 0000 : 0000 : 0000 : 0001 

FF02 :0:0:0:0:0:0:1 



Replacing Successive Fields of Zero's with 
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IPv6 Address 

IPv6 Address after Replacing Successive 
Fields of Zero's with 

2001 : 0DB8 : 0001 : 1000 : 0000 : 0000 : OefO : BCOO 

2001 : DBS : 1 : 1000 : : efO : bcOO 

2002 : 1111 : 04CF : 0000 : 0000 : 0000 : 0000 : 002F 

2002 : 1111 : 4CF : : 2F 

3FFF : 0000 : 0000 : 0000 : 0000 : 005D : 0000 : 09CE 

3FFF : : 5D : 0 : 9CE 

2001 : 0000 : 0000 : FACE ; BOOC : 0000 : 0000 : 0069 

2001 : 0 : 0 : FACE : BOOC : : 69 

20DB : 0000 : 0000 : 6666 : 0000 : 0000 : 0000 : 5228 

20DB : 0 : 0 : 6666 : : 5228 

2001 : 1111 : 0000 : 0000 : 0000 : 0000 : 0000 : 0001 

2001 : 1111 : : 1 
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Special Addresses ( IPv4 - IPv6) 
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IPv6 


IPv4 

Unique local 

FC00::/7 

Private IP 

address 

10.0.0.0/8 

172.16.0*0 to 172.31.255.255 

192.168.0.0 to 192.168.255.255 

Global unicast 

2000 ::/3 

Public IP 

address 

Other Than 

Private IP addresses 

Link local 

FE80::/10 

API PA 

169.254.X.X 

Multicast 

FF00::/8 

Multicast 

224.0.0.0 to 239.255.255.255 

Loopback 

0:0:0:0:0:0:0:1/128 

Loopback 

127.0.0.0/8 

Default 

0:0:0:0:0:0:0:0 

Default 

O.O.O.O 
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IPv4 Same Network Communication 
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Computer 

IP Address / Mask 

PC-1 

192.168,201.10/24 


PC-2 192.168.201,20/24 

PC-3 192.168,201.30/24 



Computer 

IP Address / Mask 

PC*4 

192.168,202.10/24 


PC -5 192,168.202,20/24 

PC *6 192.168^02.30/24 



Assigning IPv4 Address on Windows Computer 


ZOOM 

v ECHNOLOGIE 



On Windows 7 or Windows 8.x or Windows 10 Computer 

• Open Network and Sharing Center 

• Click on Change adapter settings and Click Open. 

• Right-click on your local adapter and select Properties. 

• In the Local Area Connection Properties window select 
Internet Protocol Version 4 (TCP/lPv4) then click the 
Properties button. 

• Now select the radio button Use the following IP address 
and enter in the IP address and Subnet mask and click OK. 


Internet Protocol Vernon 4 (TCP/iPv4) Properties 7 


Genial 

few cai i flet IP self's)*; a riomabcaly if network suepwts 

tits czpdWty. 05j*r*»c .you need to 3skyoure«bN«kadmratrat*r 
Vtic apptopiab: JP srtthgs, 

Obtain ari P address a utonieGcfly 
f9> 1 3«e Jfefofawttfl IPadrkess: 

CP address: >.?2 , IM . 201 . IB 


Sublet rrask: 

Default Bjifewoy: 

ObtatnOMs serve/ address aufmnabcaty 

Ike the folov6tq»NS serve* addresses: 
0WS aeiverj , 

AlkemattveBMC serves: 


25S , 2SS . 255 . 0 


i Val data settings upon etdl 


Advanced. . . 


OK 


Canad 
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Verify IPv4 Address on Windows Computer 
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C:\> ipconfig 

Windows IP Configuration 
Ethernet adapter Ethernet: 

Connection-specific DNS Suffix , ; 

IPv4 Address. : 192.168.201.10 

Subnet Mask . . . , , . : 255.255.255.0 

Default Gateway : 


C:\> 



Assigning IPv4 Address on Linux Computer 


ZOOM 
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bt ~ # ifconfig ethO 192.168.201.10 
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Verify IPv4 Address on Linux Computer 


ZOOM 




ECH MO LOGIES 


D 


bt " # ifconfig 


ethO Link encap:Ethernet HWaddr 00:21:97:73:58:21 

inet addr:192. 168.201.10 Bca$t:192-168.20L255 Mask:255.255.255.Q 
UP BROADCAST RUM MI MG MULTICAST MTU:1500 Metricil 
RX packets: 17 1979 errors :D dropped :0 overruns :0 frame :0 
TX packets:341932 errors:0 dropped:0 overrursiD carrier:0 
collisionsiO txqueuelemlOOO 

RX bytes:12370727 (11.7 MiBJ TX bytes:463457462 (441.9 MiB) 
Interrupt: 20 Base address :0xe800 


lo Link encap: Local Loopback 

inet addr:127-0.G.l Mask:255.Q,0.0 
UP LOOPBACK RUN l\l IMG MTU:16436 Metric:! 

RX packets: 18 errorsiO dropped :0 overrun s:0 frame :0 
TX packet$:18 errors:0 dropped:0 overruns:!) carriers 
RX bytes: 1796 (1.7 KiB) TX bytes:1796 (1.7 KiB) 
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* Packet Internet Groper 

* Ping is a computer network administration utility used to test the reachability of a 
host on an Internet Protocol (IP) network. 


For IPv4 Network 

* Windows 

ping 192.168.201.10 

* Linux 

ping 192.168.201.10 


For IPv6 Network 

* Windows 

ping 2001:1111::10 

* Linux 

ping6 2001:1111::10 
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PING 


ZOOM 

k^TECHNQLQglE^ 


Select C :\ WindowsVsystem 12\cm d.exe 


p UJsers\Huzaif a >ping 172. 31 . 31.172 

Plugins 172 . 31.31.172 with 32 bytes of data: 

Reply from 172.31.31+172; bytes=32 timeslms TTL=64 
Reply from 172.31.31.172: bytes=32 time=lms TTL=64 
Reply from 172+31-31+172; bytes=32 timeslms TTL=64 
Reply from 172.31.31.172: bytes =32 time=lms TTL=64 

| Ping statistics for 172.31.31.172: 

Received - 4j, Lost = 0 (Ot loss)., 
approximate round trip times in milli-seconds: 

Minimum = 1ms f Maximum = 1ms f Average = 1ms 


'iirlc-Lt C:\Wirld Dwi'',.4y^tiMn imd.i 




C :\W i n d ows\ syst fimlZVcmd.exe 


: \Users\Huzaif a>ping 192.168.1.1 

Pinging 192+166+1.1 with 32 bytes of data: 

Request timed out. 

Request timed out. 

Request timed out. 

Request timed out. 

Ping statistics for 192.168.1,1: 

Packets: Sent r 4, Received - Lost - 4 (IMS loss),, 


r 


Hi 


C : \Users\Huzaif a>ping 172 . 31 . 31+1 


Pinging 172+31+31+1 with 32 bytes of data: 


Reply from 172+31.31.152 
Reply from 172+31+31.152 
Reply from 172.31.31.152 
Reply from 172+31+31.152 


Destination host unreachable 
Destination host unreachable, 
Destination host unreachable. 
Destination host unreachable. 


Ping Statistics for 172. 31. 31. lj 

Packets: Sent = 4^ Received = 4j 

C: MJsers \Huzaif a > m 


Lost = D (&% loss) 



Trace route 


ZOOM I 


* Traceroute is a computer network diagnostic utility used to view the route 
(path) of packets across an Internet Protocol (IP) network. 


j 


For IPv4 Network 

* Windows 

tracert 192.168.201.10 

* Linux 

traceroute 192.168.201.10 


/ 


/ 


For IPv6 Network 

* Windows 

tracert 2001:1111::10 

* Linux 

tracerouteG 2001:1111::10 


\ / 
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Traceroute 
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D 


C , » i n dowsXsystemSZ and. ext 


C:\Users\Huzaifaxtracert www. google* com 

Tracing route to wiam. google . coin [218.53.197,63] 
over a maximum of 30 hops: 


1 

2 ms 

1 ms 

1 

ms 

10 . 117 ,0.1 

2 

2 ms 

2 ms 

2 

ms 

10.120.0.1 

3 

2 ms 

1 ms 

3 

ms 

broadband . acfcorp . in [ 183.82 .14.221] 

4 

31 ms 

31 ms 

31 

ms 

broadband . actcorp . in [183.82.14. 93] 

S 

25 ms 

25 ms 

25 

ms 

72 . 14 . 194 - 18 

6 

17 ms 

31 ms 

16 

ms 

72,14.235,69 

7 

17 ms 

17 ms 

17 

ms 

209.85,250.67 

3 

25 ms 

28 ms 

20 

ms 

maa03s21-in-f4.lel00.net [216,53.197,63] 


Trace complete. 

C : \Users\Huzaifa> 
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IPv6 Same Network Communication 
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Computer 

IP Address / Mask 

PC-4 

200 1:2222 "10/64 

PC-& 2001;2222“20/64 

PC-6 

200 1:2222:: 30/64 



Assigning IPv6 Address on Windows Computer 
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On Windows 7 or Windows 8,x or Windows 10 Computer 

* Open Network and Sharing Center 

* Click on Change adapter settings and Click Open, 

* Right-click on your local adapter and select Properties, 

* In the Local Area Connection Properties window select 

Internet Protocol Version 6 (TCP/IPvG) then click the 
Properties button. 

* Now select the radio button Use the following IP address 
and enter in the IP address and Subnet mask and click OK. 
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Verify IPv6 Address on Windows Computer 


ZOOM 
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C:\> ipconfig 

Windows IP Configuration 
Ethernet adapter Ethernet: 
Connection-specific DNS Suffix , : 


IPv6 Address. ......... : 2001:1111::10 


Link-local IPv6 Address * . . : fe80::449d:6a9a:2c8G;80dc%64 

Default Gateway . . . : 

C:\> 



Assigning IPv6 Address on Linux Computer 
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bt ~ # ifconfig ethO inet6 add 2001:llll::10/64 
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Verify IPv6 Address on Linux Computer 
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bt ™ # ifconfig 


ethO: flags=4163< UP, BROADCAST, RUNNING, MULTICAST> mtu 1500' 
inet6 20G1:1111::10 prefix len 64 scopeid OxQ<global> 
ether 44:8a:5b:d4:39:3c txqueuelen 1000 (Ethernet) 

RX packets 230 bytes 82110 (80,1 KiB) 

RX errors 0 dropped 0 overruns 0 frame 0 
TX packets 121 bytes 19549 (19,0 KiB) 

TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 


lo:flags-73<UP, LOOPBACK, RUNNING* mtu 65536 
inet 127.0.0,1 netmask 255.0,0,0 
inet6 ::1 prefixlen 128 scopeid 0xl0<host> 
loop txqueuelen 0 (Local Loopback) 

RX packets 0 bytes 0 (0.0 B) 

RX errors 0 dropped 0 overruns 0 frame 0 
TX packets 0 bytes 0 (0,0 B) 

TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 
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Open System interconnect (OSI) 
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* OSI was developed by the International Organization for Standardization (ISO) 
and introduced in 1984. 

* It is a layered architecture (consists of seven layers). 

* Each layer defines a set of functions which takes part in data communication. 



OSI Model Layers 


ZOOM 

^TECHNOLOGIES 


Layer - 7 
Layer - 6 
Layer - 5 
Layer - 4 
Layer - 3 
Layer - 2 
Layer - 1 


Application 
Presentation 
Session 
Transport 
Network 
Data Link 
Physical 


User support Layers 

I ° r 

I Software Layers 

Core layer of the OSI 

I Network support Layers 
' or 



Hardware Layers 
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Application Layer 
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Application 



Presentation 



Session 

HlggNj 


Transport 

V* 


Network 

•4 


Data Link 



Physical 

•4 


It is responsible for providing an interface for the 
users to interact with application services or 
Networking Services . 

Ex: Web browser(HTTP), Telnet etc. 



Examples of Networking Services 


ZOOM 
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Service 

Port No. 

HTTP 

80 

FTP 

21 

SMTP 

25 

TELNET 

23 

TFTP 

69 
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Data flow from Application Layer 


zoom] 
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Application 


9 s s s s 


Presentation 


Session 


Transport 


Network 


Data Link 


Data 


Physical 




Presentation Layer 



CCII 
C C N P 
C C N ft 


Presentation 


Session 


Transport 


Network 


Data Link 


Physical 


It is responsible for defining a standard format to 
the data. 

It deals with data presentation. 

The major functions described at this layer are.. 

• Encoding - Decoding 

Ex : ASCII, EBCDIC (Text) 

JPEG, GIF, TIFF (Graphics) 

MIDI,WAV (Voice) 

MPEG, DAT, AVI (Video) 

• Encryption - Decryption 

• Compression - Decompression 
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Data flow from Presentation Layer 

zoom! 

Il rr/'i hi m a i r 



Application 


Presentation 


Session 


Transport 


Network 


Data Link 


Data 


Data 



Physical 



Session Layer 
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Application 


Presentation 


Session 


Transport 


Network 


Data Link 


Physical 


It is responsible for establishing, maintaining and 
terminating the sessions. 

Session ID is used to identify a session or 
interaction. 

Ex : 


* RPC Remote Procedural Call 

* SQL Structured Query Language 

* ASP AppleTalk Session protocol 


ecu 

C C N P 
C C N A 
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Data flow from Session Layer 


ZOOM 
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Application 


Presentation 


Data 



Session 


Data 


Transport 


Network 


Data Link 


Physical 



Transport Layer 
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CCII 
C C N F 
C C N ft 


Application 


Presentation 


Session 


Transport 


Network 



It provides data delivery mechanism between the 
applications in the network. 

The major functions described at the Transport 
Layer are. 

Identifying Service 
Multiplexing & De-multiplexing 
Segmentation 

Sequencing & Reassembling 
Error Correction 
Flow Control 
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Identifying a Service 
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* Identification of Services is done using port Numbers. 

* Port is a logical communication Channel 
Total No. Ports 0 - 65535 
Reserved Ports 1 - 49151 

Open Ports 49152 - 65535 


r 

Command to check the ports used by the PC (Windows f Linux) 

netstat 

k 



Multiplexing & De-multiplexing 
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Application 

< 

Presentation 

. _ — - - J 

Session 

80 1 21 1 25 1 53 j 67 | 69 I 

Transport 

| TCP - 6 UDP-17 I 

Network 

w i 

Data Link 

* i 

Physical 
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Transport Layer Protocols 


zoom] 

v ECHMOLQglES^ 

The protocols which takes care of Data Transportation at Transport layer are 
TCP and UDP 



k A 


Transmission Control Protocol 
Connection Oriented 
Supports Acknowledgements 
Reliable communication 
Slower data Transportation 
Protocol No is 6 
Ex: HTTP, FTP, SMTP 


• User Datagram Protocol 

• Connection Less 

• No support for Acknowledgements 

• Unreliable communication 

• Faster data Transportation 

• Protocol No is 17 


• Ex: DNS, DHCP, TFTP 


fjdHoL 




i 



Segmentation 
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HELLO! 



HOW HELLO! 

ARE YOU? 


HOW 



YOU 









51 











Sequencing 


ZOOM 
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HOW 



ARE 


HELLO! ■ YOU 



Sequencing 
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HELLO! | 

HOW | 

ARE 1 

r you 

r 

1 

. 2/5 1 

3/5 I 

1 . 

1 5/5 , 
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Reassembling 
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HOW 1 

.2/5 

1 

7 

9 

1 

ARE 

3^5 

I 


HELLO! 

1/5 








Flow Control and Error Correction 
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Source 


Destination 




Due to congestion of the 
receiver, Segment 3 is lost 


ACK 3 

Window size = 2 
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Data flow from Transport Layer 
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Presentation 


Session 


Data 


Transport 


Segment 


Network 


Data Link 


Physical 
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Network Layer 




Application 


ecu 

C C N P 
C C N A 



Presentation 

■g 4 


Session 



Transport 

W 

-i 


Network 



Data Link 



Physical 

mi 


It provides Logical addressing & Path 
determination (Routing) 

The protocols that work in this layer are: 

Routed Protocols : 

IP, IPX, AppleTalk.. Etc 

Routed protocols used to carry user data 
between hosts. 

Routing Protocols : 

RIP, OSPF.. Etc 

Routing protocols performs Path determination 
(Routing). 
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Data flow from Network Layer 


zoom] 
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Application 


Data 


Device that works at 
Network Layer is Router 



Presentation 


Session 


Transport 


Network 


Data Link 


Data 



Segment 


Packet 


Physical 



Datalink Layer 
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Presentation 


Session 



Transport 


Network 


Data Link 


Physical 


It has 2 sub layers 

* MAC (Media Access Control! 

It provides reliable transit of data across a physical link. 

It also provides ERROR DETECTION using CRC (Cyclic 
Redundancy Check) 

Ex: Ethernet, Token ring...etc 

* LLC (Logical Link Control) 

It provides communication with Network layer. 
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Data flow from Data link Layer 
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Devices that work at 
Data link layer is Switch 

\ 




Presentation 


Session 


Transport 


Network 


Data Link 


Physical 


Data 


Data 



Segment 


Packet 


Frame 
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Physical Layer 


■ 

Application 

* It defines the electrical. Mechanical & functional 

specifications for communication between the Network 

devices. 

Presentation 

Session 

* The functions described at this layer are 

Transport 

- Encoding/decoding: 

It is the process of converting the binary data into signals 

based on the type of the media. 

Network 

Data Link 

- Copper media : Electrical signals of different voltages 

- Fiber media: Light pulses of different wavelengths 

- Wireless media: Radio frequency waves 

Physical 


x iron 

1 — !W 
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Data flow from Physical Layer 
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Application 


Data 


Presentation 


Data 


Devices that work at 
physical layer are Hub , Repeater 


Session 


Transport 


Network 


Data Link 


Data 



Packet 


Frame 



Encapsulation & Decapsulation 



Presentation 


Data 


Data 


Data 


Data 
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Presentation 



Network 


Data 


Segment 


Packet 


Data 



Packet 


Session 


Transport 


Network 


Data Link 


Frame 


Frame 


Data Link 


Physical 


Bits 


Bits 


Physical 
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Comparison between OS1 & TCP/IP Model 
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Application 


Presentation 


Session 


Transport 


Network 


Data Link 


Physical 





Application 


Host to Host 


Internet 


Network Access 



Introduction to Routers 
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Router 
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* Router is an internetworking device. 

* It enables communication between two or more different logical networks. 

* it is a Network Layer (layer 3) device. 

* It comes from the word "ROUTE". Hence it is also a device that finds the best 
route (path) for networks. 

* The IP of Router is the default gateway for all devices in LAN. 



Type of Routers 
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There are two type of Routers 
• Hardware Routers: 


- Cisco, Juniper, Multicom, HP, Dlink, Maipu and many more... 
* Software Routers: 

- Microsoft Server, Linux Server 
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Functions of a Router 


* Inter-network Communication 

* Best Path Selection 

* Packet Switching 

* Packet forwarding 


Internet User 
61,0,0,10 


$0/0/0 
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Source IP & Port 


191*0*0, 10 - SO 


Destination IP & Port 


61 , 0 . 0,10 - $000 


www.ya hoo.com 
191.0.0.10 




Types of Routers 


* Fixed router 
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- Fixed routers are non upgradable, can not add or remove the Ethernet or 
serial ports. 

- Does not have any slot. 

- In fixed routers the ports are integrated on the mother board. (Fixed on 
mother board). 

* Modular router 


- Modular Routers are upgradable, can add or remove the interfaces as per 
our requirement. 

- Number of slots available depends on the series of the router. 

- Can add LAN and WAN cards. 
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Fixed router and Modular router 
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Cisco Router Category 


* Branch Routers 

* Network Edge and Aggregation Routers 

* Service Provider Routers 
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Branch Routers 
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ll 


Routers used by small organization and branch offices 
Router Series - Models 

- 800 series - 810, 860, 880 

- 1900 series - 1905, 1921, 1941 

- 2600 series - 2610, 2611, 2620 

- 2800 series - 2811, 2851 

- 2900 series - 2901,2911,2921 



rrr~ 



i 

(IK© 

0 

■ 



i 
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- dh 

’S 



" F -* 

P4 — 

11 ijig ■ 
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Network Edge and Aggregation Routers 


* Routers that are used at large organization / campus and Head Offices 

• Router Series - Models 

- 1000 series - 1001, 1002, 1004 

- 5000 series - 5001, 5002 

- 5500 series - 5508 


ZOOM 
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Service Provider Routers 
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• Routers that are used by the service providers. 

• Router Series 


- 6000 series 

- 9000 series 
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Interfaces on Router 
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Serial Ports 



FastEithernet — 
Ports 


Console Auxiliary 
Port Port 


' • « e)i 

• -■£0-4 T S54.T- 



Power Power Cord 

Switch Connection 



VO 0 1 El 


r« 

G C N P 
C N 
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LAN Interfaces - RJ-45 ports 


* Routers have RJ-45 ports to connect th 

• The speed of the RJ-45 ports can be 

- 10 Mbps Ethernet 

- 10/100 Mbps Fast Ethernet 

- 10/100/1000 Mbps Gigabit Ethernet 


ZOOM 

Router to the LAN. 




LAN Connectivity 
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An IF address has to be assigned to this interface. It should be in the same network as that of the 
LAN, This IP address is the default gateway address for all LAN systems. 


Straight Cable 


Straight Cable 


Router 


M 



192.168.201.1/24 


Switch 



LAN - 192.168.201.0/24 
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LAN Connectivity 
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Cross Cable 




Router 


Fa 0/0 

192.168,201.1/24 


To connect the router's Ethernet interface 
directly to a PC LAN card a cross cable is used. 



LAN - 192.168.201.0/24 


1 


A 



Serial Port 


* Serial port is used for WAN Connectivity. 

* Serial port are available as 

- 60 pin female connectors. 

- Smart Serial 26 pin female connectors. 


ZOOM I 
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HWIC 


* High-speed WAN interface cards (HWICs) provide connectivity to a Wide Area 
Network 




Console Port 
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* it is a local administrative port. 

* It is a RJ-45 Port. 

* It is used for initial configuration and advance troubleshooting, 

* Note : It is the most important and sensitive port on the Router. 



DB-9 Convertor 



Console cable 
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Console Connectivity 
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Console Port 


RJ-45 

Connector 


Rollover 

Cable 


RJ-45 to DB-9 
Converter 


Computer 


Auxiliary Port 
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* It is a remote administrative port. 

* Used for remote administration / configuration. 

* Its an RJ-45 port. 



* A console / rollover cable is used to connect the auxiliary port to a dial-up 
modem. 
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Auxiliary Connectivity 
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Auxiliary Port 



- RJ -45 — 
Connector 



Rollover RJ-45 to DB-25 Modem 

Cable Adapter 



Interfaces of a Router 
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* LAN Interface 


- RJ 45 Ethernet / FastEthernet / Gigabit Ethernet 

* WAN Interface 

- Normal Serial Interface 

- Smart Serial Interface 

* Administrative Interface 

- Console 


- Auxiliary 
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IPv4 


Different Network Communication 
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Computer IP Address { Mask 


PC-1 192.168,201.1 0-24 

PC-2 192.168,201.20/24 

PC-3 192.168,201.30/24 


PC-4 


PC-5 


PC-6 



1 Computer 

IP Address / Mask j 

PC -4 

192.168.202.10/24 

PC-& 

192,168,202.20/24 

PC -6 

192.168.202.30/24 
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Assigning Default Gateway IP Address on Windows Computer 
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On Windows 7 or Windows 8.x or Windows 10 Computer 

* Open Network and Sharing Center 

* Click on Change adapter settings and Click Open. 

* Right-click on your local adapter and select Properties. 

* In the Local Area Connection Properties window select 

Internet Protocol Version 4 (TCP/IPv4) then click the 
Properties button. 

* Enter Default Gateway and click OK. 




Verify IPv4 Address on Windows Computer 


C:\> Ipconfig 

Windows IP Configuration 
Ethernet adapter Ethernet: 

Connection-specific DNS Suffix . : 

IPv4 Address. : 192,168.201.10 

Subnet Mask : 255.255.255.0 

Default Gateway : 192.168,201.1 
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Assigning Default Gateway IP Address on Linux Computer 
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bt ~ # route add default gw 192,168.201.1 



Verify IPv4 Address on Linux Computer 
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bt~# route -n 
Kernel IP routing table 


Destination 

Gateway Genmask 

Flags Metric Ref 

Use 

Iface 

192.168.201.0 

O.O.O.O 255.255.255.0 

U 

0 

0 

0 

ethO 

127.0.0.0 

O.O.O.O 255.0.0.0 

U 

0 

0 

0 

lo 

o.o.o.o 

192.168.201.1 O.O.O.O 

UG 

0 

0 

0 

ethO 


bt~ # 



72 







IPv6 Different Network Communication 


ZOOM 

Vi CHNOLOCieS 



Computer 

IP Address / Mask 

PC-1 

2001:1111::1W64 

PC -2 

2001:1111 ::20/64 

PC-3 

2001 :11 1 1 ::3Q/64 


Computer 

]P Address / Mask 

PC-4 

2001:2222::10/64 

PC“5 

2001:2222-20/64 

PC-6 

2001:2222:: 30/64 
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Assigning Default Gateway IP Address on Windows Computer 


ZOOM 

V ECHNQLQglES 



On Windows 7 or Windows 8.x or Windows 10 Computer 

* Open Network and Sharing Center 

* Click on Change adapter settings and Click Open. 

* Right-click on your local adapter and select Properties. 

* In the Local Area Connection Properties window select 

Internet Protocol Version 6 (TCP/IPv6) then click the 
Properties button. 

* Enter Default Gateway and click OK. 




Verify IPv6 Address on Windows Computer 


ZOOM 

V ECHMOLOGieS 


u 


C:\> ipconfig 

Windows IP Configuration 
Ethernet adapter Ethernet: 

Connection-specific DNS Suffix , : 

IPv6 Address. . : 2D01:1111;:10 

Link-local IPv6 Address fe80::449d:6a9a:2cS0:80dc%64 

Default Gateway : 2001:1111::! 
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Assigning IPv6 Address on Linux Computer 


ZOOM 

M ECHHQLQglES 



bt ~ # route -6 add default gw 2001:1111::! 



Verify IPv6 Address on Linux Computer 


ZOOM 

ECH NO LOGIES 



bt~# route -6 
Kernel IPv6 routing table 


Destination 

Next Hop 

Flag 

Met 

Ref 

Use 

If 


::1/128 

;■ 

Un 

0 

1 

0 

lo 


2001:1111-/64 



U 

256 

0 

2 

ethO 

fe80::468a:5bff:fed4:3899/128 :: 


Un 

0 

1 

0 

lo 

fe80::/64 



U 

256 

0 

0 

ethO 

ff00::/8 



U 

256 

0 

0 

ethO 

::/0 

2001:1111::! 

UG 

1 

0 

0 

ethO 



bt " # 
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Internal Components of Router 


ZOOM 

k^TECHMOLOGIES 


* ROM (Read only Memory) 

- It contains a bootstrap program which searches and loads the operating 
system. 

- It is similar to the BIOS of a PC. 

- It also contains a ROMMON for advance troubleshooting. 


* Flash memory 

- The Internetwork Operating System (IOS) is stored here. 

- IOS is a Cisco proprietary operating system. 
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Internal Components of Router 


NVRAM (Non Volatile Random Access Memory) 
- NVRAM is similar to a hard disk. 


zoom] 

v ECHMQLQglES^ 


- It is also known as permanent storage. 

- The startup configuration Is stored here. 


* RAM (Random Access Memory) 

- It is also called as the main memory. 

- It is a temporary storage. 

- The running configuration is stored here. 



Internal Components of Router 


ZOOM 

^TECHNOLOGIES 



77 















Sequence 


ZOOM 

CHNOLOGIES 




Power On Self Test - checks the hardware 


IROM loads Bootstrap program and searches for the IQS 


IOS from Flash is loaded 


The startup configuration is loaded from the NVRAM 


Boot process is completed as everything is loaded into the 

RAM 




Configuration Register - 0x2102 
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Console Connectivity 


ZOOM 

CHNOLOOIES 





Console Port 


* RJ-45 
Connector 


Rollover 

Cable 


RJ-45 to DB-9 
Converter 


Computer 


Access Router through Console 


ZOOM I 


* Cisco Routers and Switches do not have any default IP address or 
Configuration, hence its required to use the Console port for Initial 
Configuration. 

* Require physical connection between the Cisco Router/Switch and PC via 
console cable. 
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ZOOM 

CHNOLOOIES 



Emulation Software 


• WINDOWS 

• Hyper-terminal / Putty / Teraterm 


* LINUX 

• Minicom -s 



Initial Configuration 


ZOOM 

^TECHNOLOGIES 



Fa 0/0 
192 . 163 . 201 . 1/24 


/=! 


Swi 

tch 


Console 

"" -H 

X 

\ 

\ 


\ 

\ 


\ 

\ 

J 


l 

/ 





/ 


Computer IP Address 
192. 168 .2 02. 10/ 24 
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Access Router through Console 


ZOOM 

ECHHQLQglES 




Accessing router via console from Microsoft Windows Computer 
Start a terminal emulator application, such as PUTTY.exe 
Select Serial option and set speed to 9600 


Click Open | 


PuTTY Configuration 


Category : 

13 ' Session 
I L_ Logging 
I- 1 Terminal 

Keyboard 

Bell 

!.... Featuies 
I: ] Window 

Appearance 

Behaviour 

Tranaiafron 

SHedton 

Cblwr* 

FI- Connection 
Data 
j- Proxy 
■ --- T elnel 
Riogm 

Fl SSH 

Serial 


Basic options foryour Pul It session 
Specify the destination you wad to connect to 
Serial line Speed 

COM 1 3600 

Connection type . 

Raw Telnet F^ogin 



SSH o Seda! 


Load save or delete a stored session 

Saved Sessions 



Close window on esat 1 
Always Never 


<X CHy on cJean exit 



Modes of the Router 


* Setup Mode 

* User Mode 

* Privileged Mode 

* Global Configuration Mode 

* Interface Mode 

* Line Mode 


I ZOOM I 

^TECHNOLOGIES^ 
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Setup Mode 


zoom] 

V ECHNQLQglES^ 


The router enters in to the setup mode if the NVRAM is empty. 



— System Configu ration Dialog — 

Would you like to enter the initial configuration dialog? [yes/no]: 





User Mode 


ZOOM 

^TECHNOLOGIES 


* Only some basic monitoring and limited show commands works in this mode. 
- Example of commands : enable, ping, traceroute, etc. 



Router > 
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Privilege Mode 


ZOOM 

CHNOLOGIES 



* Monitoring, Troubleshooting and Verification commands works in this mode. 
- Example of commands : show, configure terminal, write, etc. 



Router# 



Global Configuration Mode 


ZOOM 

^TECHNOLOGIES 


* Configuration changes made in this mode affects the operation of the device as 
a whole. 


- Example of commands : hostname, etc. 

Router (config) # 








83 







Interface Mode 


zoom] 

v ECHMQLQglES^ 

* Commands given in this mode will apply to a specific network interface, 
i.e. FastEthernet 0/0 or Serial 0/0 

- Example of commands : ip address, no shutdown etc. 



Router (config-if) # 



Line mode 


ZOOM 

^TECHNOLOGIES 


* Commands given in this mode will apply to a specific physical or virtual lines, 
i.e. Console, Auxiliary or VTY. 


- Example of commands : password, no shutdown etc. 



Router (config-line) # 





84 








Accessing Router 


ZOOM 

Vi CHNOLOOIES 



Fa 0/0 
192.168.201,1/24 



I 


I 


Switch 



/ 


/ 


/ 


* 




Computer IP Address 
192,168,202.10/24 
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Types of Network Access 


ZOOM 

\ techmoloqi es 



• Enterprise Access 

• Internet Access 



Types of WAN Technologies 


ZOOM 

ECHNOLOCieS 


WAN 


Enterprise 


Dedicated 


Switched 


VPN 


PSTN 

ISDN 


Framerelay 

MPLS 


Internet 


Dedicated 





Switched 


Circuit 


DSL /Cable 
Wireless 


PSTN 

ISDN 
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Dedicated 


/ \ / \ , 

LAN - 192,168, 201.0/24 


Switch 


r-T— i 


ZOOM 





LAN - 192,168,205,0/24 




u 

LAN - 192.168.202.0/24 





Switch 


ZOOM 

TECH HO LOGIES 


Circuit Switched 
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Packet Switched 


ZOOM 

^TECHNOLOGIES., 





Switch 


ZOOM 

TECH HO LOGIES 


FaO/O 


VPN 


LAN - 192,165.201.0/24 



FaD/0 


LAN -292,168,203,0/24 
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Internet Conne 




satellite \ 


VSAT 



Telephone line 


Modem 


ISDN 


Internet 


ZOOM 


ECH NO LOGIES 



Fiber cable 


Optical 
Convertor 




WAN Topologies 


ZOOM 

^^TECHNOLOGIES 


* 


STAR or Hub and Spoke Topology 

- Easy to deploy. Less number of connections 

- No backup/redundancy 


Hub & Spoke 



Full Mesh Topology 

- All branches interconnected, full redundancy 

- More connections, complex configuration 


* Partial Mesh Topology 

- Mix of Star & Full mesh topologies 


Full Mesh 
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Leased Line Connectivity 


ZOOM 

V ECHMQLOGIES 



Chennai 

Office 



Hyderabad 

Office 


Chennai 

MUX 


Hyderabad 

MUX 


V.35 Cable 


U35 Cable 


» Pair of — - 
Copper wire 


lllla 

j Fiberoptic | 

filW 

1 TFLCO 1M™ 


Switch 


csu / osu 


CSU / D SU 


Switch 



LAN - 192 .168,201.0/ 24 


LAN - 192.168.202.0/24 


rnn 

wMmMm 
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Wan Connectivity Representation 


ZOOM 

V ECHNOLOOIES 




so/o 

172 , 16 . 0,1 


i 


Fa 0/0 

192.1 68.201,1 


Switch 



interface 

Network ID / Mask 

Fa 0/0 

192.163.201 .0/24 


SO/O 


172.16.0.0/16 


S 0/0/1 
172,16.0.2 



Fa 0/0 
192,168,202.1 


Switch 





1 



Interface 

Network ID / Mask 

Fa 0/0 

192.163.202.0/24 

S 0/0/11 

172.16.0.0/16 



Device Classification 


ZOOM 


TECHNOLOGIES 



DCE 




• Data Communication Equipment 

• Generate clocking 
(i.e. Speed) 

• Master 

• Example of DCE:- CSU/DSU 





DTE 





r 

* 

Data Termination Equipment 


* 

Accept clocking 



{i.e. Speed) 


« 

Slave 


• 

Example of DTE:- Router 
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Serial - back to back cable 


ZOOM 

ECHHQLQglES 


u 


* When the distance between two Routers is short, a special V.35 Back to Back 
Cable is used to replace the copper wire, CSU/DSU and MUX. 

* For data communication using back to back Serial cable, one end has to be a 
DCE and the other has to be a DTE. 



Encapsulation 


ZOOM 

k^TECH NO LOGICS 


* Encapsulation is the process of adding a new Header or Trailer to data. 

* The header and trailer contains information which is needed for proper 
transportation of the data. 

* There are different types of WAN Encapsulation: 

- PPP 

- HDLC 
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Wan Encapsulation 


ZOOM 

v ECHHQLQglES 



PPP 


X </ 


• Point to Point Protocol 

• Open Standard Protocol 

• Supports Authentication 

• Supports Compression 




HDLC 




• High level Data link Control 

• Vendor proprietary Protocol 

• No Support for Authentication 

• No Support for Compression 



Wan - Serial Interface Configuration on IPv4 Network 


ZOOM 

^TECHNOLOGIES 


SO/1 
172. IS .0.2 


Fa 0/0 
192. 168. 201.1 


Interface 

Network ID / Mask 

Fa 0/0 

192.168.201.0/24 

S 0/0 

172.16.0.0/16 

S 0/1 

172.18.0.0/16 


Interface 

■ 

Network ID / Mask 

Fa 0/0 

192.168.202.0/24 

S 0/0/0 172.17.0.0/16 

S 0/0/1 

172.16.0.0/16 


S 0/0 


Fa 0/0 

192.1GS.2G3.1 



Interface 

Network ID / Mask 

Fa 0/0 

192.168.203.0/24 

S0/0 172.18.0.0/16 

S0/1 

172.17.0.0/16 
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Identify Serial Interface DCE or DTE) 

zoom] 

Ik T r 1 Ik « 1 in 1 a— rt dfl H 

■ “ ■ ■ ■ ■ ■ — ■ - — - " 


Router# show controllers serial < no. > 



ICC 111 


r* 

CCNP 
C N 



Wan - Serial Interface Configuration on IPv4 Network 


ZOOM 


TECHNOLOGIES 


Router (config) # interface Serial <no.> 

Router (config-if) # ip address < ip address > < subnet mask > 

Router (config-if) # no shutdown 

Router (config-if) # clock rate < bandwidth > 

Router (config-if) # encapsulation < HDLC/PPP > 
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Wan - Serial Interface Configuration on IPv4 Network 


ZOOM 


M! 


ECHNO LOGIES 



E (config)# interface serial 0/0 
CHE (config-if)# ip address 172.16.0.1 255.255.0.0 
CHE (config-if)# no shutdown 
CHE (config-if)# dock rate 64000 
CHE (config-if)# encapsulation hdle 
CHE (config-if)# exit 
CHE (config)# interface serial 0/1 
CHE (config-if)# ip address 172.18.0.2 255.255.0.0 
CHE (config-if)# no shutdown 
CHE (config-if)# encapsulation hdlc 


CHE (config-if)# exit 


BAN (config)# interface serial 0/0 
BAN (config-if)# ip address 172.18.0.1 255.255.0.0 
BAN (config-if)# no shutdown 
BAN (config-if)# dock rate 64000 
BAN (config-if)# encapsulation hdlc 
BAN (config-if)# exit 
BAN (config)# interface serial 0/1 
BAN ( config-if )# ip address 172.17.0.2 255.255.0.0 
BAN (config-if)# no shutdown 
BAN (config-if)# encapsulation hdlc 
(config-if)# exit 




'J 




HYD-1 (config)# interface serial 0/0/0 

HYD-1 (config-if)# ip address 172.17.0,1255,255.0.0 

HYD-1 (config-if)# no shutdown 

HYD-1 (config-if)# dock rate 64000 

HYD-1 (config-if)# encapsulation hdlc 

HYD-1 (config-if)# exit 

HYD-1 (config)# interface serial 0/0/1 

HYD-1 (config-if)# ip address 172.16.0.2 255.255.0.0 

HYD-1 (config-if)# no shutdown 

HYD-1 (config-if)# encapsulation hdlc 

HYD-1 (config-if)# ex it 


Network Diagram 
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Troubleshooting 


Interface 


ZOOM 

v ECHHQLQglES 




* Serial 0/0 is up , line protocol is up 

- Layer 1 and Layer 2 Connectivity and configuration is fine 

* Serial 0/0 is administratively down, line protocol is down 

- 'No Shutdown' has to be given on the local Router's Serial interface 

* Serial 0/0 is up, line protocol is down 

- Encapsulation mismatch or clock rate has not been given on the DCE 
interface or Lease Line problem 

* Serial 0/0 is down, line protocol is down 

- Problem with the v.35 cable, CSU/DSU or 'no shutdown' has not been given 
on the remote Router 



Wan - Ethernet Interface Configuration on IPv6 Network 


ZOOM 

^TECHNOLOGIES 



Fa 0/1 

2001: 5555: :1 


Fa 0/1 
2001:5555::2 



Fa 0/0 

2001:11 11 ::1 




i 

/ 


Switch 

_n 

rt 






Fa 0/1 2001:5555-/64 


Fa 0/0 

2001 :2222::1 







\ 


■ \ / X / 


Interface 

Network ID / Mask 

Fa 0/0 

2001:2222-/64 


Fa 0/1 2001:5555-/64 
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Wan - Ethernet Interface Configuration on IPv6 Network 



Router (config) # interface <ethernet> <no.> 

Router (config-if) # ipv6 address < ip > < prefix length > 
Router (config-if) # no shutdown 



Wan - Ethernet Interface Configuration on IPv6 Network 


ZOOM 

^TECHNOLOGIES 



HYD-1 (config)# interface fastethernet 0/1 
HYD-1 (config-if)# ipv6 address 2001:5555:;l/64 
HYD-1 (config-if)# no shutdown 
HYD-1 (config-if)# exit 
HYD-1 (config)# 



HYD-2 (config)# interface fastethernet 0/1 
HYD-2 (config-if)# 1pv6 address 20Ql:5555::2/64 
HYD-2 (config-if)# no shutdown 
HYD-2 (config-if)# exit 
HYD-2 (config)# 
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Wan - Ethernet Interface - Verification 


ZOOM 

ECHMQLQglES 



Router # show interface <ethernet> <no. > 

j 



Troubleshooting Ethernet Interface 


ZOOM 

Vi ECHMOLOCIES 


* Fastethernet 0/0 is up , line protocol is up 

- Layer 1 and Layer 2 Connectivity and configuration is fine 

* Fastethernet 0/0 is administratively down, line protocol is down 

- 'No Shutdown' has to be given on the local etherent interface 

* Fastethernet 0/0 is up, line protocol is down 

- Speed & Duplex Mismatch or 'No Shutdown' has not been given on the 
remote device ethernet interface. 

* Fastethernet 0/0 is down, line protocol is down 

- Layer 1 problem - No device attached or faulty cable. 
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ZOOM 

V ECHMOLOGieS 


y 


* Routing is the process of moving IP packets from one network to another 
network. 

* Routing involves two basic activities: 

- Determining the best paths. 

- Forwarding packets through these best paths. 
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IP Routing 


ZOOM 

\ JECH MO LOGI ES, 




Source IP & Port 


61.0.0'. 1 data 


Destination 



ir cp. rur i 



Internet User 


www.yahoacom 



IP Routing - Network Diagram 


ZOOM 

V ECH NO LOGIES 



Branch Office 



5 0/0 
172,16.0.1 


I 


Fa 0/0 

192.1 68.201. 1 


Switch 



Interface 

Network ID / Mask 

Fa 0/0 

192.168.201.0/24 


S 0/0 


172.16.0.0/16 


Head Office 


S 0/0/1 
172.16.0.2 



Fa 0/0 
192.168.202.1 


M 


a 


Switch 



Interface 

Network ID / Mask 

Fa 0/0 

192.168.202.0/24 

S 0/0/1 

172.16.0.0/16 
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Conditions for IP Routing 


ZOOM 

\TE CHNOLOGIES 



* The HO Router FastEthernet IP address should be in the same network as the 
HO LAN and similarlv the BO Router FastEthernet IP address should belong to 
the same network as the BO LAN. 


* The Serial interface IP between the HO and the BO should be in the same IP 
network. 


* HO LAN and BO LAN should be in different IP network. 

* All interfaces of a Router should be in different IP network. 



Types of Routing 


ZOOM 

^TECHNOLOGIES 


* Static Routing 

* Dynamic Routing 

* Default Routing 
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Static Routing 


ZOOM 

^^TECHNOLOGIES 


* Static routes are configured, maintained and updated by network 
administrator manually. 

* Administrator should know the destination IP network for configuration. 

* Administrative distance for Static Route is 1. 



Administrative Distance (AD) is the "reliability” of the 
routing protocol, AD range is 0-255, lesser the 
administrative distance, higher the priority 
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Enabling Routing on IPv4 Network 


ZOOM 

^ TECHNOLOGI ES 





Interface 

Network ID / Mask 

Fa 0/0 

192.163.201.0/24 

SO/0 172.16.0.0/16 

SO/1 

172.18.0.0/16 



Switch 



Interface 

: 

Network ID / Mask 

Fa 0/0 

192.168.202.0/24 

S 0/0/0 172.17.0.0/16 

S 0/0/1 

172.16.0.0/16 



Interface 

Network ID / Mask 

Fa 0/0 

192.160.203.0/24 

S0/0 172.10.0.0/16 

SO/I 

172.17.0.0/16 



Enabling Routing on IPv4 Network - Configuration 


ZOOM 

^TECHNOLOGIES 



Router(config) # ip routing 
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Enabling Routing on IPv4 Network - Configuration 


ZOOM 

ECHHQLQglES 




CHE (config) it ip routing 



BAN (config) tt ip routing 



HYD-1 (config) tt ip routing 





Enabling Routing on IPv4 Network - Verification 



ZOOM 

ECHMQLOCIE5 
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ic Routing on IPv4 Network - Configuration 



Router(config) # ip route < Destination Network ID > 

< Destination Subnet Mask > < Next Hop IP address > 



Static Routing on IPv4 Network 


ZOOM 

ECH HO LOGIES 



SO/1 
172.18.0.2 


Fa 0/0 
192.168.201.1 


Switch 



Interface 

Network ID / Mask 

Fa 0/0 

192.168.201.0/24 

S 0/0 

172.16.0.0/16 

S 0/1 

172.18.0.0/16 


Switch 



Interface 

■ 

Network ID / Mask 

Fa 0/0 

192.168.202.0/24 

S 0/0/0 172.17.0.0/16 

S 0/0/1 

172.16.0.0/16 


S 0/0 
172.18.0.1 



Fa 0/0 

192. 168. 203.1 


Switch 


_ fl 



Fa 0/D 

192.168.202.1 


“TZ 


i 


L m 

i i 




Interface 

Network ID / Mask 

Fa 0/0 

192.168.203.0/24 

S0/0 172.18.0.0/16 

S0/1 

172.17.0.0/16 
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Routing on IPv4 Network - Configuration 


ZOOM 

Vi CHNO LOGIES 






CHE (config) U ip route 192.168.202.0 255.255.255.0 172.16.0.2 
CHE (config) ft ip route 192.168.203.0 255.255.255.0 172.18.0.1 



BAN (config) # ip route 192.168.202.0 255.255.255.0 172.17.0.1 
BAN (config) # ip route 192.168.201.0 255.255.255.0 172.18.0.2 


J V 



HYD-t (config)# ip route 192.168.201.0 255,255.255.0 172.16.0,1 
HYD-1 (config)# ip route 192.168.203,0 255,255.255.0 172.17.0,2 







Static Routing on IPv4 Network - Verification 


Verify the routing table 
Router # show ip route 


ZOOM 

V ECHNOLOCIES 
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Enabling Routing on IPv6 Network 


ZOOM 

Vi CHNOLOCieS 


Fa OH 



Interface 

Network ID / Mask 

Fa 0/0 

2001:1111 ::/64 

Fa 0/1 

2001: 5555: :/64 


Fa 0/1 
2001:5555::2 



Fa 0/0 

2001:2222-1 




Interface 

Network ID / Mask 

Fa 0/0 

2001:2222::/64 

Fa 0/1 

2001: 5555: :/64 
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Enabling Routing on IPv6 Network - Configuration 


ZOOM 

ECHHQLQglES 



Route r(config) # ipv6 unicast-routing 



Enabling Routing on IPv6 Network - Configuration 


ZOOM 

CH HO LOGIES 




HYD-1 [config) # ipv6 unicast-routing 




— — ■' 

HYD-2 (config] # ipv6 unicast-routing 


* 
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Enabling Routing on IPv6 Network - Verification 


ZOOM 

\ TECHNOLOGIES 

^ 



Router # show ipv6 route 



ICC 111 


r* 

CCNP 
C N 



Static Routing on IPv6 Network - Configuration 


ZOOM 


TECHNOLOGIES 
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Routing on IPv6 Network 


ZOOM 

^ TECHNOLOGI ES 



Fa 0/1 Fa 0/1 





Interface 

Network ID / Mask 

Fa <H0 

2001:1111-/64 


Fa (Ml 


2001:5555::/64 



Fa 0/1 2QQ1:555S::/64 



Static Routing on IPv6 Network - Configuration 


ZOOM 

ECHMOLOCieS 



HVD-1 (cpnfig) # ipv6 route 2001:2222; ;/64 2001:S555:;2 


HYD-2 (tonfig) # ipv6 route 2001:llll::/64 2001:5555::! 
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Routing on IPv6 Network - Verification 


ZOOM 

^TECHNOLOGIES 



Verify the routing table 
Router # show ipv6 route 



Advantages and Disadvantages of Static routing 


ZOOM 

^TECHNOLOGI ES 



Advantages 

Disadvantages 

Secured 

No Automatic Updates 

„ .. . . Need of Destination network ID for the 

Reliable 

configuration 

Faster 

Administrative work is more 


No wastage of bandwidth Used in Small networks 
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Subnetting 


* Creating Multiple independent Networks from a single Network 

* Converting Most bits into Network bits (i.e. converting 0's into l's ) 

* Subnetting can be performed in two ways 

- FLSM { Fixed Length Subnet Mask ) 

- VLSM ( Variable Length Subnet Mask } 

* Subnetting can be done based on requirement 

- Number of Networks Required? 

- Number of Hosts Required? 

- Cisco Slash Notation 


ZOOM I 


Note:- 


It is very useful for Internet Service Providers (ISP), Large Organizations/ 
Companies etc., 
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Requirement of Networks 


ZOOM 

v ECHHQLQglES 



* A corporate network has 200 PC's 

* Which class of IP Address is preferred for the network ? 
Answer : Class C 

* There are 4 departments with 50 pc's each 

Marketing 
Sales 
Finance 
IT 


192.168.1.1 to 192.168.1.50 
192.168.1.51 to 192.168.1.100 
192.168.1.101 to 192.168.1.150 
192.168.1.151 to 192.168.1.200 



Administrators Requirement 


ZOOM I 


* Inter-department communication should not be there 
Solution : 

* Allocate different Networks to each Department 
i.e., 

192.168.1.1 to 192.168.1.50 

192.168.2.1 to 192.168.2.50 

192.168.3.1 to 192.168.3.50 

192.168.4.1 to 192.168.4.50 


Marketing 

Sales 

Finance 

IT 
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Main Aim of Subnetting 


ZOOM 

CHNOLOOIES 




* Problem with the previous scenario is 

- Wastage of IP addresses, if it is Public IP addresses (Approx. 800 ) 

- To reduce the wastage of IP addresses, we have Subnetting 



Power table 


ZOOM 
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r ^ 

POWER TABLE 


2 1 = 2 

2 s =512 

2 17 = 131072 

2 2S = 33554432 

2 2 = 4 

2^=1024 


2 26 = 67108864 

2 s = 8 


2 19 = 524288 

2 27 = 134217728 

\£> 

II 

rf 

fsl 

2 12 = 4096 

2 20 = 1048576 

2 2S = 268435456 

2 s = 32 

2 13 = 8192 

2 21 = 2097152 

2 29 = 536870912 

2 6 = 64 

2 14 - 16384 

2 2 i = 4194304 

2 30 = 1073741824 

2 7 = 128 

2 15 = 32768 

2 23 = 8388608 

2 31 = 2147483648 


2 s = 256 


2 1B = 65536 


2 24 = 16777216 


2^2 = 4294967296 


i 
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Some Important Values 
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f firm 

tJl.li 
|| [ ■WIWi 


Requirement of Subnets - 4 no's 7 


ZOOM 

^TECHNOLOGIES 


* Class C : 192.168.1.0 

* Octet Format is N . N . N . H 

Network bits : 24 Host bits : 8 

* Subnets required : 4 no's 
= 2 n > Req. of Subnet 
= 2 n > 4 

= 2 2 > 4 

= 4 subnets 

* No. of Hosts/ Subnet 

— 2 no ^OSt -2 

= 2 G - 2 (-2 is for Network ID & Broadcast ID) 
= 64-2 

= 62 Hosts / Subnet 

/ rarm 

II — mm 
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Continued... 


* Customized subnet mask 


zoom] 

V ECHNQLQglES^ 


255. 


255. 255. 


0 


255. 255. 


255. 


192 



11111111. 11111111. 11111111. 00000000 



_ limill _ miiiii. llllllll. 11000000 


* Subnet Range 
Network ID 
192.168.1.0 
192.168.1.64 
192.168.1.128 
192.168.1.192 


Broadcast ID 

- 192.168.1.63 

- 192.168.1.127 

- 192.168.1.191 

- 192.168.1.255 



Requirement of Subnets - 30 no's ? 


ZOOM 

^TECHNOLOGIES 


* Class C : 192.168.1.0 


* Octet Format is N.N.N.H 

Network bits : 24 Host bits : 8 

* Subnets required : 32 no's 
= 2 n > Req. of Subnet 
= 2 n > 4 

= 2 s > 4 
= 32 subnets 

* No. of Hosts/ Subnet 

— 2 no host -2 

= 2 3 - 2 (-2 is for Network ID & Broadcast ID) 

= 8-2 

= 6 Hosts / Subnet 

II — mm 
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Continued... 


* Customized subnet mask 


zoom] 

V ECHNQLQglES^ 


255 . 


255 . 


255 . 


0 


255 . 


255 . 


255 . 


248 





11111111. 11111111. 11111111. 00000000 = 11111111. 11111111. 11111111. 11111000 


* Subnet Range 
Network ID 
192.168.1.0 


Broadcast ID 
- 192.168.1.7 


192.168.1.8 


- 192.168.1.15 


192.168.1.16 


- 192.168.1.23 




Requirement of Host - 12 no's ? 


ZOOM I 


* Class C : 192.168.1.0 

* Octet Format is N . N . N . H 

Network bits : 24 Host bits : 8 

* Host required : 12 no's 

= 2 n - 2 > Req. of Host (-2 is for Network ID & Broadcast ID) 
= 2 4 - 2 > 12 
= 16-2 
= 14 Hosts 

* No. of Subnets 

— 2 no network bits 
= 2 4 
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Continued... 


* Customized subnet mask 


zoom] 

V ECHNQLQglES^ 


255. 


255. 255. 


0 


255. 255. 


255. 


240 



11111111. 11111111. 11111111. 00000000 



_ limill _ miiiii. llllllll. 11110000 


* Subnet Range 

Network ID Broadcast ID 

192.168.1.0 - 192.168.1.15 


192.168.1.16 - 192.168,1.31 


192.168.1.32 - 192.168.1.47 




Requirement of Host - 2 no's ? 


ZOOM I 


* Class C : 192.168.1.0 

* Octet Format is N . N . N . H 

Network bits : 24 Host bits : 8 

* Host required : 2 no's 

= 2 n - 2 > Req. of Host (-2 is for Network ID & Broadcast ID) 
= 2 2 - 2 > 2 
= 4-2 

= 2 Hosts 

* No. of Subnets 

— 2 no network bits 
= 2 6 
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Continued... 


* Customized subnet mask 


ZOOM 
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255. 


255. 


255. 


0 


255. 


255. 


255. 


252 





11111111. 11111111. 11111111. 00000000 = 11111111. 11111111. 11111111. 11111100 


* Subnet Range 

Network ID Broadcast ID 

192.168.1.0 - 192.168.1.3 


192.168.1.4 - 192.168.1.7 


192.168.1.8 - 192.168.1.11 




Cisco Slash Notation - example-1 


* Class C : 192.168.1.65/25 
Network bits : 25 Host bits : 7 

* No. of Subnets 

_ 2 no networ ^ bits 
= 2 1 

= 2 subnets 

* No. of Hosts / Subnet 

— 2 no host bits _2 

= 2 7 - 2 (-2 is for Network ID & Broadcast ID) 

= 128-2 

- 126 Hosts / Subnet 


ZOOM 
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Continued... 


* Customized subnet mask 


ZOOM 
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255 . 


255 . 


255 . 


0 


255 . 


255 . 


255 . 


128 





11111111. 11111111. 11111111. 00000000 = 11111111. 11111111. 11111111. 10000000 


Subnet Range 
Network ID 


Broadcast ID 


192.168.1.0 - 192.168.1.127 


192.168.1.128 - 192.168,1.255 



Cisco Slash Notation - example-2 


ZOOM 

^TECHNOLOGIES 


* Class C : 192.168.1.65/27 
Network bits : 27 Host bits : 5 

* No. of Subnets 

_ 2 no networ ^ bits 
= 2 3 


= 8 subnets 
• No. of Hosts / Subnet 

— 2 no host bits _2 

= 2 5 - 2 (-2 is for Network ID & Broadcast ID) 

= 32-2 

= 30 Hosts/ Subnet 

II — !>!■ 
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Continued... 


* Customized subnet mask 
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255. 


255. 


255. 


0 


255. 


255. 


255. 


224 





11111111. 11111111. 11111111. 00000000 = 11111111. 11111111. 11111111. 11100000 


* Subnet Range 

Network ID Broadcast ID 

192.168.1.0 - 192.168.1.31 


192.168.1.32 - 192.168.1.63 
192.168.1.64 - 192.168.1.95 
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Overview of Routing Protocol 
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u 


* Purpose of Routing Protocol includes the following functions: 

- Discover the neighbor, finding the best paths 

- Maintaining the up to date routing information 

- Choosing the best path in available paths. 

- Whenever the best path is going down finding the new path and forwarding 
the data through that path. 



Advantages of Dynamic Routing 


ZOOM I 


* Automatic updates. 

* Changes in the network topology are updated dynamically 

* Only the directly connected network information is required for the 
configuration 

* Less Administrative work 

* Selecting the best path to destination networks 

* Finding the second best path if best path is no longer available. 

* More scalable 

* Used for medium and large Networks 
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Types of Dynamic Routing Protocols 


ZOOM 
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Dynamic Routing 


1GP 


i 


istance vector Link state I Advance DVP 


RIP 

IGRP 


OSPF 

IS-IS 




Path Vector 


BGP 



Classfull v/s Classless Routing Protocol 


ZOOM 




TECHNOLOGIES 



Classfull Routing Protocol 1 

r 1 

1 Classless Routing Protocol 

r ^ 

* Do not send the subnet mask in 

the update 

* Doesn't support subnetting 

* Ex: RIP vl, IGRP 

L ^ 

► ^ 

4 Carries the subnet mask in the 

update 

4 Supports subnetting 

4 Ex: RIP v2, EIGRP, OSPF 

L J 


1 — !>!■ 
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RIP Characteristics 


* Distance Vector Protocol 


ZOOM 
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* Open standard 

* Uses Bellman Ford Algorithm 

* Classless routing protocol 

* Metric = Hop Count 

* Maximum hop count is 15. 

* Updates are sent through the multicast address 224.0.0.9 

* RIP sends periodic updates for every 30 seconds. 

* RIP supports equal cost load balancing by default 4 paths (maximum upto 16 
paths) 
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RIP Characteristics 


ZOOM 
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* Complete routing table is sent as update 

* Each update can contain maximum of 25 routes 

* Administrative distance is 120 

* Uses the UDP port no 520 

* Also known as "Routing by Rumor" 



Loopback Interface 


ZOOM 

^TECHNOLOGIES 


* A loopback interface is a virtual interface that resides on a router. 

* Loopback interfaces are very useful because they will never go down, unless 
the entire router goes down. 

* By default, router doesn't have any loopback interfaces (loopback interfaces 
are not enabled by default), but they can easily be created. 
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ZOOM 




Router (config) # interface loopback < interface no, > 
Router (config-if) # ip address < ip address > < subnet 
Router (config-if) # end 
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RIP on IPv4 Network - Configuration 
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r i 

Router(config) # ip routing 
Routerf config) # router rip 
Router(config-router) ft version 2 
Router( config- router) # network < Network ID > 

L J 
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RIP on IPv4 Network 


Interface 

Network ID / Mask 

Fa 0/0 

192,168.201,0/24 

S 0/0 172.16.0.0/16 

S 0/1 

172,18.0.0/16 


Interface 

IP Address / Mask 

Lol 

16.1.1.1/24 


U2 

Lq3 


16 1 , 2 , 1/24 
16 1.3.1/24 




A 


9 n ter fa c e N etwork ID / M ask 


Fa 0/0 192 1 66 202.0/24 

S 0/0/0 172.1f.0 0/16 

S 0/0/1 172,16.0 0/16 



Interface 

IP Address / Mask 

Lol 

17.1.1.1/24 

Lq2 17.1.2.1/24 

■ i 

Lq3 

17.1,3,1/24 
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Interface 

Network ID / Mask 

Fa 0/0 

192.160,203.0/24 

S 0/0 

17216.0.0/16 

S 0/1 

172.17.0.0/16 


Interface 

IP Address / Mask 

Lol 

18.1,1.1/24 


Lo2 

Lo3 


18.1 2,1/24 
18.1.3.1/24 



RIP on IPv4 Network - Configuration 
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SUP \ 


/ 

CHE (config) # ip routing 


BAN (config) ft ip routing 

CHE (config) # router rip 


BAN (config) ft router rip 

CHE (con fig- router) ft version 2 


BAN ( co nfi g-router) # version 2 

CHE (con fig- router) ft network 192.168.201.0 


BAN (config-router) # network 192*168*203*0 

CHE (con fig- router) ft network 172.16*0*0 


BAN (config-router) # network 172*17.0.0 

CHE (con fig- router) ft network 172.18*0*0 


BAN (config-router) # network 172*18.0.0 

CHE (con fig- router) ft network 16*0*0*0 


BAN (config-router) # network 18.0.0.0 

CHE (con fig- router) ft end 


BAN (config-router) # end 

CHE# 


BAN# 

V / 

__»j« v,. tafc. 

V ^ 


HYD 

HYD 

HYD 

HYD 

HYD 

HYD 

HYD 

HYD 

HYD 


1 (conf 
1 (conf 
■1 (conf 
1 (conf 
1 (conf 
■1 (conf 
1 (conf 
■1 (conf 
1# 




g] U ip routing 
g} ft router rip 
g-router) # version 2 
g-router) # network 192. 163.202. 0 
g-router} # network 172.16.0.0 
g-router) # network 172.17.0.0 
g-router) # network 17.0.0.0 
g-router) # end 


Network Diagram 
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RIP on IPv4 Network - Verification 


ZOOM 
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Verify the routing table 



Router # show ip route 



To verify the protocols 



Router # show ip protocols 

j 



RIP Timers 


ZOOM 
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* Update Timer : 30 sec 

- Time between two consecutive updates 


* Invalid Timer : 180 sec 

- Time a router waits to hear an update from the neighbor 

- The route is marked as unreachable if there is no update for this time period 


* Flush Timer : 240 sec 

- Time after which the invalid route is removed from the routing table 
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RIP Updates 


ZOOM 
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To verify the RIP Timers 



Router # show ip protocols 



Verify RIP Update Packets 



Router # terminal monitor 



Router # debug ip rip 

A 



Change RIP Timers 


ZOOM 
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Router (config) # router rip 

Router (config-router) # timers basic <update timer> 
cinvalid timer> <holddown time> <flush timer> 





HYD-l (config) # router rip 

HYD-1 (config-router)# timers basic 15 30 90 90 

HYD-l (config-router) # end 

HYD-1# 
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Passive interface 
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* Passive interface is configured to stop the updates to exit out of the interface. 

* If passive interface is configured between the routers no updates will be 
exchanged. 



Configure Passive i 


ZOOM 
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Router(config) # router trip 

Router(config-router) # passive-interface cinterface typo <no.> 




HVD-l (config) # router rip 

hyd- 1 (config-router) # passive- interface FastEthernetO/O 
HVD-l (config-router) # end 
HVD-l # 
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Summarization 
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* Combining the continuous networks in one full network and advertising to 
neighbor router iis called as summarization. 

* Advantages of Summarization 

- Less number of updates 

- Reducing the size of routing table 



Disable auto-summary 
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r 

Route r{config) # router rip 


Route r{config- router) # no auto-summary 


Router (config- router)# exit 


L. 

J 


HVD-l (config) # router rip 
HYD-i (config-router) # no auto-summary 
HVD-l (config-router) #end 
HVD-l # 
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* RFC 2080- RIP for ipv6 

* Uses the multicast group FF02::9 

* Multiple instances can be created on one router which is not possible in RIP 
IPv4. 
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RIPng on IPv6 Network - Configuration 





Router(config) # ipv6 unicast-routing 
Router(config) # ipv6 router rip <name> 
Router(config) # interface < interface type > < no. > 
Router(config-if) # ipv6 rip <name> enable 


ZOOM 

\ tech 
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RIPng on IPv6 Network 
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Interface 


Fa 0/0 
Fa 0/1 



Fa 0/1 

2001: 5555: :1 


Fa 0/1 
2001:5555::2 


Fa 0/0 

2001:11 11 ::1 



Met work ID / Mask 


2001:1111::/64 

2001:5555-/64 



Fa 0/0 

2001:2222-1 


Switch 


Switch 




■ 

Interface 

* J 

Met work ID / Mask 

Fa 0/0 

2001:2222-/64 


Fa 0/1 


2001:5555-/64 
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RfPng on IPv6 Network - Configuration 
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HYD-1 (config} # ipv6 unicast-routing 

HYD-1 (config) # ipv6 router rip cisco 

HYD-I (config-rtr) # exit 

HYD-1 (config) # interface fastethernet 0/0 

HYD-1 (config-if) # ipv6 rip cisco enable 

HYD-1 (config-if) # exit 

HYD-1 (config) # interface fasfethernet 0/1 

HYD-1 (config-if) # ipv6 rip cisco enable 

HYD-1 (config-if) # end 

HYD-1# 





HYD-2 (config) # ipv6 unicast-routing 

HYD-2 (config) # ipv6 router rip cisco 

HYD-2 (config-rtr) # exit 

HYD-2 (config) # interface fastethernet 0/0 

HYD-2 (config-if) # ipv6 rip cisco enable 

HYD-2 (config-if) # exit 

HYD-2 (config) # interface fastethernet 0/1 

HYD-2 (config-if) # ipv6 rip cisco enable 

HYD-2 (config-if) # end 

HYD-2 # 

^ J 



RIPng on IPv6 Network - Verification 
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r 


Verify the routing table 


Router # show ipv6 route 


L 

J 
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Disadvantages of RIP 
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* More Bandwidth is utilized for sending the updates. 

* Does not consider the bandwidth in metric calculations, uses only hop count 

* Slow convergence 



Link State Routing Protocol 


ZOOM 
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* Every router maintains the full picture of the topology 

* Link state protocol is more scalable 

* Any change in the topology is quickly updated. 

* Link state protocol has more advantages compared to distance vector routing 
protocol 
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OSPF Characteristics 


* Link State Protocol 

* Open standard 

* Uses Dijkstra (Shortest Path First - SPF ) Algorithm 

* Classless routing protocol 

* Metric = cost= 10 8 / Bandwidth in bps (CISCO) 

* Updates are sent through Multicast IP address 224.0.0.5 

* OSPF protocol supports equal cost load balancing 
- Supports Default 4 paths maximum of 16 paths. 

* Administrative distance is 110 


ZOOM I 
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OSPF Characteristics 
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* Neighbor is discovered and established by hello packets 

* Hello packets 10 seconds. Dead interval 40 seconds. 

* Unlimited Hop Count. 

* OSPF sends updates (LSAs) when there is a change to one of its links. 

* OSPF protocol number 89. 



Router ID 


ZOOM 

^TECHNOLOGIES 


♦ The router-id is used to identify the router in OSPF 

- First preference is given to router-id command 

- Second preference is given to highest loopback interfaces configured on 
router 


- Third preference is given to highest physical ip address 



X firm 
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OSPF Neighbor States 


Neighbor State 
down 


Neighbor State 
down 

RID 1.1. 1.1 | njt 

to* 

2- way 

DR Election, 

Hie llo, 

A to B Links (comes up..) 

Seen (null), RID 1.1. 1.1 


RID 2*2*2*2 

m 

2 -way 

DR Election, 

— ^ 


Hello, Seen (1.1. 1.1), RID2.2.2.2 



Hello, DR=z.z.i.z 


If needed 

ExStart 

(ISA Headers) 


If needed 



(LSA Headers) 

ExStart 

Exchange 


(Summary - LSA Headers) 


Exchange 

Loading 

Full 


* 

V 

(Full LSAs) 


Loading 

Full 
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OSPF Terminology 


ZOOM 

^TECHNOLOGIES 


• Neighbor 

- Routers that share a common link become neighbors. 

- Neighbors are discovered by Hello Packets. 

- To become neighbors the following should match 

* Area I D 

* Network ID and Subnet Mask 

* Hello and Dead Intervals 

* Authentication (optional) 


* Adjacencies 


- Adjacencies are formed once neighbor relation is established. 

- In Adjacencies the database details are exchanged. 
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OSPF Tables 


ZOOM 
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* It maintains three tables : 

* Neighbor Table 

- Neighbor table contains information about the directly connected OSPF 
neighbors forming adjacency. 

* Database Table 

- Database table contains information about the entire view of the topology 
with respect to each router. 

* Routing Table 

- Routing table contains information about the best path calculated by the 
shortest path first algorithm in the database table. 



OSPF - Neighbor Table 


I ZOOM I 

^TECHNOLOGIES^ 
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OSPF - Database Table 


ZOOM 
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NEIGHBOR TABLE (Router A) 
Neighbor Interface 


B 

SO 

D 

S2 

E 

SI 


Update 
Router C 



LAN - 10.0.0.0/8 



OSPF - Database Table 
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'J 


NEIGHBOR 

TABLE (Router A) 

Neighbor 

Interface 

B 

SO 

D 

S2 

E 

SI 
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Wild Card Mask 
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* A wild card mask can be calculated using the formula : 

Global Subnet Mask 
- Subnet Mask 


Wild Card Mask 



OSPF Single Area on IPv4 Network - Configuration 



Router(config) # ip routing 

Router(config) # router ospf < Process ID > 

Router(config-router) # router-id < Router ID > 

Router(config-router) # network < Network ID > < Wildcard mask> 

area <area ID > 
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OSPF Single Area on IPv4 Network 


Interface 

■ 

Network ID / Mask 

Fa 0/0 

192.163.201.0/24 

SO/0 172.16.0.0/16 

SO/1 

172.18.0.0/16 



Interface 

: 

Network ID / Mask 

Fa 0/0 

192.168.202.0/24 

S 0/0/0 172.17,0,0/16 

S 0/0/1 

172.16.0.0/16 
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Interface 

Network ID / Mask 

Fa 0/0 

192.160.203.0/24 

S0/G 172.10.0.0/16 

S0/1 

172.17.0.0/16 



OSPF Single Area on IPv4 Network - Configuration 
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CHE (config) ft ip routing 


BAN (config) # ip routing 

CHE (config) # router ospf 1 


BAN (config) # router ospf 8 

CHE (config-router)# router-id 1,1.1, 1 


BAN (config-router)# router-id 33,3.3 

CHE (config-router) # network 192,168,201.00.0,0,255 area 0 


BAN (config-router) # network 192,168,203,0 0,0,0. 2SS area 0 

CHE (config-router) # network 172.16.0.00.0.255.255 area 0 


BAN (config-router) # network 172.17.0.0 0.0.255.255 area 0 

CHE (config-router) # network 172.18.0.0 0.0.255,255 area 0 


BAN (config-router) # network 172.13.0,0 0,0.255.255 area 0 

CHE (config-router) # end 


BAN (config-router) # end 

CHE# 


BAN# 





HYD-1 (config) # ip routing 

HYD-1 [config) # router ospf 2 

HYD-1 (config-router) # router-id 2.2. 2. 2 

HYD-1 [config-router) # network 192.168.202.0 0,255.255.255 area 0 
HYD-1 (config-router) # network 172,16,0.0 0,0,255.255 area 0 
HYD-1 [config-router) # network 172,17,0.0 0.0.255,255 area 0 
HYD-1 (config-router) # end 
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OSPF Single Area on IPv4 Network - Verification 


Verify the routing table 
Router # show ip route 


zoom] 
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To verify the protocols 
Router # show ip protocols 

To check Neighbor Table 
Router # show ip ospf neighbor 


To check Database Table 
Router # show ip ospf database 



Link State Advertisement (LSA) 
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• Link 


- Router interface 


• State 

- Description of interface and neighbor relation and sending to neighbor 
routers. 

* LSAs are additionally refreshed every 30 minutes. 
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OSPF Packet types 


ZOOM 

v ECHHQLQglES 




• HELLO 

- To Discover the neighbor 

- To form neighbor relation 

- Keep Alive mechanism 

• DBD 


- Database description the update are exchanged . 

* LSR - Link state Request 

- Used for requesting for a newer updated information. 

* LSU - Link State Update 

- Receiving the updated information from neighbors and link state update 

* LSACK - Link State Acknowledgement 

- Once receiving the update sends thanks for information called as link state 
acknowledgement 



OSPF Hiello Packets 
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To verify the OSPF Hello & Dead Timers 



Router ft show ip protocols 



Verify OSPF Hello Packets 



Router # terminal monitor 



Router ft debug ip ospf hello 
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Passive interface 
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* Passive interface is configured to stop the hello packets from exiting out of the 
interface. 

* If passive interface is configured between the routers no neighbor relationship 
will be formed and no updates will be exchanged. 



Configure Passive i 
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Router(config) # router ospf <pid> 

Router(config-router) # passive-interface <interface typo <no.> 




HVD-l (config) # router ospf 2 

hyd- 1 (config-router) # passive- interface FastEthernetO/O 
HVD-l (config-router) # end 
HVD-l # 
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OSPF Metric 


* OSPF uses the cost as metric. 

* Cost = Reference Bandwidth / interface Bandwidth. 

* The default reference bandwidth is 100 Mbps 

- 100 Mbps cost = lOOMbps/lOOMbps = 1 

- 1.544Mbps cost = 100Mbps/l. 544Mbps = 64 


Interface 

Bandwidth 

(Kbps) 

OSPF Cost 

Serial 

1544 

64 

Ethernet 

10000 

10 

FastEthernet 

100000 

1 

GigabitEthemet 

1000000 

1 
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OSPF Cost metric for an interface 
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Router(config # interface ^interface type> <no.> 
Router(config-if) # ip ospf cost <cost> 

L 



H¥D-1 (config) # interface serial 0/0/0 
HYD-i [config-router) # ip ospf cost 100 
HYD-i (config-router) # end 


,/ 
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Issues with OSPF single area 


zoom] 
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r 

My SPiF Algorithm Is 



Running Too many 

■ 

L 

times!!! 

_! 


\ 


I'm Running out of memory 
because my routing table 
is too big!! 


I'm Receiving too many 
LSA1H 




Hierarchical Network Design using Areas 


I ZOOM I 

^TECHNOLOGIES^ 


* OSPF Network Design is divided into multiple areas 

* One area has to be designated as Area 0 

* Area 0 is called the Backbone Area 

* Remaining Areas are called as non back bone area. 
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OSPF Multiple Area 


ZOOM 

v ECHHQLQglES 





Types of Routers 


ZOOM 
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* Backbone Router (BR) 

- The router which belongs to backbone area is called as Backbone router 

* Internal Router (IR) 

- The router which belongs to regular area is called Internal Router 

* Area Border Router (ABR) 

- The router which shares two different areas is called Area Border Router 

* Autonomous System Border Router (ASBR) 

- The router which is connected to different protocol is called Autonomous 
system boundary router. 
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OSPF Multiple Area on IPv4 Network - Configuration 



Router(config) # ip routing 
Router(config) # router ospf < Process ID > 

Router(config-router) ft router-id < Router ID > 

Router(config-router) ft network < Network ID > <Wildcard mask> 

area <Area ID > 



OSPF Multiple Area on IPv4 Network 
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SO/1 

172,18.0,2 


192,168.201,1 


Interface 

Network ID / Mask 

Fa 0/0 

192.168.201.0/24 

so/o 

172,16.0.0/16 

S0/1 

172.18.0.0/16 


5 0/0 


Fa 0/0 

192,168.203.1 



— 

Interface 

L 

Network ID / Mask 

Fa 0/0 

192.168.202.0/24 


S 0/0/0 
S 0/0/1 


172.17.0. 0/16 

172.16.0. 0/16 



192.168,203,0/24 

172.18.0. 0/16 

172.17.0. 0/16 
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OSPF 


e Area on IPv4 Network - Configuration 


ZOOM 
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LiL^P s 



CHE (config}# Ip routing 


BAN (config) # ip routing 

CHE (config} # router ospf 1 


BAN (config) # router ospf 3 

CHE (config-router) # muter-id 1.1, 1.1 


BAN (config-router) # router-id 3. 3.3. 3 

CHE (config-router) # network 192.168.201.00.0.0.255 area 1 


BAN (config-router) ft network 192.168.203,0 0,0.0.255 area 2 

CHE (config-router) # network 172.16.0.0 0.0.255,255 area 0 


BAN (config-router) ft network 172.17.0.0 0.O.255.255 area 0 

CHE (config-router) # network 172.18,0.00.0,255.255 area 0 


BAN (config-router) ft network 172.18,D.O 0.0,255,255 area 0 

CHE (config-router) # end 


BAN (config-router) # end 

CHE# 


BAN ft 

L J 





HYP-1 (config) # ip routing 

HYD-1 (config)# router ospf 2 

HYD-1 (config-router) # router-id 2.2. 2. 2 

HYD-1 (config-router) # network 192.168.202,0 0.255.255,255 area 0 
HYD-1 (config-router)# network 172.16.0.0 0.0.255.255 area 0 
HYD-1 (config-router) # network 172.17.0.00.0.255.255 area 0 
HYD-1 (config-router) # end 


HYD-1# 


Network Diagram 



OSPF Multiple Area on IPv4 Network - Verification 


Verify the routing table 
Router # show ip route 

To verify the protocols 
Router # show ip protocols 


ZOOM 
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To check Neighbor Table 
Router # show ip ospf neighbor 


To check Database Table 
Router # show ip ospf database 
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0SPFv3 Characteristics 


• RFC 2740 

• Multicast address is FF02::5 and FF02::6 

* Ospfv3 is configured on link basis. 

* OSPFv3 supports multiple instances on a single link. 

* OSPFv3 adjacencies are formed using link-local address. 

• Still uses the router-id from IPv4 


ZOOM I 
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0SPFv3 on IPv6 Network - Configuration 



Router(config) # ipv6 unicast-routing 
Router(config) # ipv6 router ospf <Process id> 

Router(config-router) # router-id < Router ID > 
Router(config) # interface < interface type > < no. > 
Router(config-if) # ipvG ospf <Process id> area <Area 


ZOOM 
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OSPFv3 on IPv6 Network 
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Fa 0/1 

2001: 5555: :1 


Fa 0/1 
2001:5555::2 


Fa 0/0 

2001:11 11 ::1 




Interface 

Network ID / Mask 

Fa 0/0 

2001:11 11 ::/64 



Fa 0/0 

2001:2222-1 


Fa 0/1 


2001:555S::/G4 


Fa 0/1 


Switch 


Switch 





Interface 

Network ID / Mask 

Fa 0/0 

2001:2222::/€4 


2001:5SSS::/G4 
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SPFv3 on IPv6 Network - Configuration 


ZOOM 


M! 
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rap s 



HYD-1 (config} # ipv6 unicast-routing 


HYD-2 (config) # ipv6 unicast-routing 

HYD-1 (config) # ipv6 router ospf 2 


HYD-2 (config) # ipv6 router ospf 2 

HYD-I (config-rtr)# router-id 11.11.11.11 


HYD-2 (config-rtr)# router-id 22.22.22.22 

HYD-1 (config-rtr) # exit 


HYD-2 (config-rtr) # exit 

HYD-1 (config) # interface fastethernet 0/0 


HYD-2 (config) U interface fastethernet 0/0 

HYD-1 (config-if) # ipv6 ospf 2 area 0 


HYD-2 (config-if) # ipv6 ospf 2 area 0 

HYD-1 (config-if) # exit 


HYD-2 (config-if) # exit 

HYD-1 (config) # interface fastethernet 0/1 


HYD-2 (config) # interface fastethernet 0/1 

HYD-1 (config-if) # ipv6 ospf 2 area 0 


HYD-2 (config-if) # ipv6 ospf 2 area 0 

HYD-1 (config-if) # end 


HYD-2 (config-if) # end 

HYD-1# 


HYD-2 # 

\ J 


✓ 



OSPFv3 on IPv6 Network - Verification 


ZOOM 
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Verify the routing table 
Router # show ipv6 route 
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Disadvantages of OSPF 


zoom] 
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* Consumes more Memory and CPU processing time 

* Complex configuration 
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EIGRP Characteristics 


ZOOM 

CHNOLOOIES 



* Advanced Distance Vector Routing Protocol 

* Open Standard, was cisco proprietary 

* Diffusing update algorithm (DUAL) 

* Classless Routing Protocol 

* Metric = Composite Metric 

- Bandwidth, Load, Delay, Reliability, MTU 

* Updates are sent as multicast(224.0.0.10) or unicast 

* EIGRP protocol alone supports equal and unequal cost load balancing. 

* Default of 4 paths and maximum of 16 paths 



EIGRP Characteristics 


ZOOM I 


* Administrative Distance is 90 

* Maximum Hop Count is 255 (Default 100) 

* Hello timer - 5 seconds, Hold on timer - ISseconds 

* Supports multiple Routed Protocols - IP, IPX, Apple talk 

* EIGRP protocol number 88. 
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E1GRP Tables 


ZOOM 
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* Neighbor Table 

- Contains information about directly connected neighbors. 

• Topology Table 

- Contains entries for all destinations, along with the feasible distance and the 
advertised distance. 

- Contains the successors. 

- Contains feasible successor if any. 


* Routing Table 

- Entries with the best path for each destination from the Topology table are 
moved into the Routing Table 



EIGRP Terminology 


ZOOM I 


* Feasible Distance FD : 

- Feasible distance (FD) is the metric of the best route to a destination, including the 
local link distance. 

- Feasible distance = advertised distance + local link distance (of the best path} 


* Advertised Distance AD: 

- The distance of a route as advertised by the neighbor. It does not include the local 
link distance. 


* Successor : 

- The neighbor with best distance to the destination. 


* Feasible Successor : 

- The neighbor with second best distance to the destination, which meets this 
criteria: advertised distance should be less than the feasible distance (AD <FD) 

f rarm 

II — wu 
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EIGRP - Neighbor Table 


ZOOM 
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EIGRP - Topology Table 


ZOOM 
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NEIGHBOR 

TABLE (Router A) 

Neighbor 

Interface 

B 

SO 

D 

$2 

E 

si 



TOPOLOGY TABLE 

(Router A) 

Network 

Neighbor 

TO 

AD 

FD 

10,0,0.0/8 

via & 

30 

10 
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via E 

35 

25 

FS 


vie D 

45 
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EIGRP - Routing Table 
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NEIGHBOR 

TABLE (Router A) 

Neighbor 

Interface 

B 

SO 

D 

S2 

E 

SI 


Network 


TOPOLOGY TABLE (Router A) 
Neighbor TO AD FD 



ia 

B 

30 

10 

30 S 

ia 

E 

35 

25 

F5 

ia 

D 

45 

35 



ROUTING TABLE (Router A) 


D 10,0,0.0/8 [90/30] via 01:36, SerialQ 




Autonomous System 
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* Autonomous system is a collection of routers under one common 
administration 

* Autonomous system is identified by numbers 

* Autonomous system ranges from 0-65535 

- Public - 1-64511 

- Private - 64512-65535 
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Routing Protocol Classification 
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IGP 

• Interior Gateway Protocol 

• Routing protocols used within an 
Autonomous system 

• Ex: RIP, IGRP, EIGRP, OSPF, IS-IS 


EGP 




• Exterior Gateway Protocol 

« Routing protocol used between 
different Autonomous systems 

• Ex: Border Gateway Protocol is 
extensively used as EGP 


k A 



IGP and EGP 


ZOOM 
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IGP 


IGP 


RIP, OSPF, IGRP, EIGRP 


RIP, OSPF, IGRP, EIGRP 



XYZ - AS 200 



• IGPs operate within an autonomous system 

* EGPs connect different autonomous systems 
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EIGRP on IPv4 Network - Configuration 


Router(config) # ip routing 
Router(config) # router eigrp < AS No > 

Router(config-router) # network < Network ID > <Wildcard mask> 



EIGRP on IPv4 Network 
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Network ID / Mask 
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S0/1 

172.17.0.0/16 
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EIGRP on IPv4 Network - Configuration 
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CHE (config) tt ip routing 
CHE (config)# router eigrp 100 

CHE (con fig-router) # network 192.168,201,0 0,0.0.255 
CHE (con fig-router)# network 172*16.0.0 0.0.255,255 
CHE (config-router) # network 172.1S.0.D 0.0.255.255 
CHE (config-router) # end 
CHE# 



BAN (config) # ip routing 
BAN (config) # router eigrp 100 

BAN (config-router) tt network 102.168,203,0 0.0.0,255 
BAN (config-router) tt network 172.17,0,0 0.0,255,255 
BAN (config-router) tt network 172.18.0,0 0.0.255,255 
BAN (config-router) tt end 
BANtt 



HYD-1 (config) # ip routing 
HYD-1 [config}# router eigrp 100 

HYD-1 (config-router)# network 192.168.202.0 0.0.0.255 
HYD-1 (config-router)# network 172. 16.0.0 0.0,255.255 
HYD-1 (config-router)# network 172,17,0.0 0,0,255.255 
HYD-1 (config-router) # end 



EIGRP on IPv4 Network - Verification 


Verify the routing table 
Router # show ip route 

To verify the protocols 
Router # show ip protocols 


zoom] 
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To check Neighbor Table 
Router # show ip eigrp neighbor 


To check Topology Table 
Router # show ip eigrp topology 
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EIGRP Metric 


ZOOM 
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EIGRP uses the default metric as Bandwidth and Delay 


Metric = ( BW + Delay) * 256 

Metric = {(10 7 / Lowest Bandwidth in kbps) + (Sum of Total Delay/10)} *256 


Interface 

Bandwidth 

(Kbps) 

Delay (|is} 

Serial 

1544 

20000 

Ethernet 

10000 

1000 

FastEthernet 

100000 

100 

Gigabit Ethernet 

1000000 

10 



EIGRP Metric Calculation 
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BW- 100000 kbps 
Delay-100 ps 


1 






BW- 1544 kbps 


BW- 1544 kbps 
Delay-20000 ps 



Delay-100 ps 

I 


BW- 1544 kbps 
Delay-20000 ps 




Fa 0/0 


BW* 100000 kbps 
Delay-100 ps 



1 





EIGRP Metric = ((10 7 /lowe$t Bandwidth in kbps) + (Sum of Total Delay/10)) *256 



= (10000000/1544) + (20000 + 100 / 10) * 256 
= 2172416 
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EIGRP Packets 


ZOOM 
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To verify the EIGRP Hello & Holdown Timers 
Router # show Ip protocols 





Verify EIGRP Packets 
Router # terminal monitor 
Router # debug eigrp packet 





Passive Interface 
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y 


* Passive interface is configured to stop the hello packets from exiting out of the 
interface. 

* If passive interface is configured between the routers no neighbor relationship 
will be formed and no updates will be exchanged. 
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Configure Passive interface 


ZOOM 
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Router(config) # router eigrp <AS No> 

Router(config-router) # passive-interface interface type> <no.> 





HYD-1 [config] # router eigrp 100 

HYD-1 [config-muterj # passive- interface FastEthernetO/O 
HYD-1 (config-router) #end 
HYD-1 # 



Router ID 


ZOOM 
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* The router-id is used to identify the router in EIGRP 

- First preference is given to router-id command 

- Second preference is given to highest loopback interfaces configured on 
router 


- Third preference is given to highest physical ip address 
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Configure Router ID 
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Router(config) # router eigrp <AS No> 
Router(config-router) # eigrp router-id <router-id> 




HVD-1 (config) # router eigrp 100 
HYD-1 (config-muter) # eigrp router-id 2. 2. 2. 2 
HYD-1 (config-router) #end 
HYD-1 n 




EIGRP - Load Balancing 


* EIGRP supports two types of load balancing 

- Equal cost load balancing 

- Unequal cost load balancing 


ZOOM 
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* Load balancing on 4 equal cost paths enabled(Default) 

* Maximum paths are based on device platform (equal or unequal cost paths) 
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EIGRP - Equal Cost Load Balancing 
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Metric = 100 



Metric = 100 



EIGRP - Unequal Cost Load Balancing 
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* By default it is turned off 


Metric = 100 





Metric = 100 
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EIGRPv6 Characteristics 


• RFC 7868 

• Multicast Address for EIGRPv6 is FF02::A 

• Still uses the router-id from IPv4 


ZOOM 

NO LOGICS 
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EIGRPv6 on IPv6 Network - Configuration 


Router(config) # ipv6 unicast-routing 
Router(config) # ipv6 router eigrp <AS No> 
Router(config-router) # eigrp router-id <router-id> 
Route r{config-r outer) # exit 
Router(config) # interface < interface type > < no. > 
Router(config-if) # ipv6 eigrp <AS No> 


ZOOM 
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EIGRPv6 on IPv6 Network 
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Fa 0/1 AS 100 Fa 0/1 
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EIGRPv6 on IPv6 Network - Configuration 
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Fpm > 

HYD-l (config} # ipv6 unicast-routing 
HYD-1 (config) # ipv6 router eigrp 100 
HYD-l (config-rtr) # eigrp router-id 11.11,11.11 
HYD-1 (config-rtr)# exit 
HYD-l (config) # interface fastethernet 0/0 
HYD-l (config-if) # ipv6 eigrp 100 
HYD-l (config-if) # exit 
HYD-l (config) # interface fastethernet 0/1 
HYD-l (config-if) # ipv6 eigrp 100 
HYD-l (config-if) # end 
HYD-l# 

/ 



HYD-2 (config) # ipv6 unicast-routing 

HYD-2 (config) # ipv6 router eigrp 100 

HYD-2 (config-rtr)# eigrp router-id 22.22.22.22 

HYD-2 (config-rtr) # exit 

HYD-2 (config) # interface fastethernet 0/0 

HYD-2 (config-if) # ipv6 eigrp 100 

HYD-2 (config-if) # exit 

HYD-2 (config) # interface fastethernet 0/1 

HYD-2 (config-if) # ipv6 eigrp 100 

HYD-2 (config-if) # end 

HYD-2 # 

/ 



EIGRPv6 on IPv6 Network - Verification 
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r i 

Verify the routing table 
Router # show ipv6 route 

L J 



169 








BGP Features 
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* Path Vector Protocol 

* Open standard protocol 

* Uses the path vector algorithm 

* Classless routing protocol 

* Administrative distance for EBGP is 20 

* BGP exchanges routing information between Autonomous Systems 

* External BGP (EBGP) which is also known as an inter-domain routing protocol, 
operates outside an AS and connects one AS to another. 

* Hello timer is 60 seconds. Hold on timer is 180 seconds 

* BGP uses the TCP port number 179. 
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EBGP on IPv4 Network - Configuration 


Router(config) # ip routing 
Router(config) # router bgp <AS No> 

Router(config-router) # network < Network ID > mask <Subnet mask> 
Router(config-router) # neighbor < peer address > remote-as < peer-as-no > 
Router(config-router) # end 



EBGP on IPv4 Network - Configuration 
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EBGP on IPv4 Network - Configuration 
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CHE (config) ff ip routing 
CHE (config) If router hgp 100 

CHE (corf ig- router) # network 192.16S.2Q1.Q mask 255,255,255,0 
CHE (config- router) # network 172,16.0.0 mask 255,255.0,0 
CHE (corf ig- router) # neighbor 172,16.0,2 remote-as 200 
CHE (config-router) # end 




BAN (config) # ip muting 
BAN (config) # router bgp 300 

BAN (config-router) tt network 192.168.201.0 mask 255.255.255.0 
BAN (config-router) # network 172,17.0,0 mask 255,255 0.0 
BAN (config-router) # neighbor 172.17.0.1 remote-as 200 
BAN (config-router) # end 
BAN (config) # 

- J 



HYD-1 (config) H ip muting 
HYD-1 (config] ff router bgp 200 

HYD-1 (config-router) if network 192,168,202.0 mask 255.255.255.0 
HYD-1 (config-router) # network 172,16.0.0 mask 255.255,0,0 
HYD-1 (config-router) if network 172,17.0,0 mask 255.255,0.0 
HYD-1 (config-router) # neighbor 172.16.0,1 remote-as 100 
HYD-1 (config-router) if neighbor 172.17,0.2 remote-as 300 
HYD-1 (config-router) # end 



EBGP on IPv4 Network - Verification 
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Verify the routing table 
Router # show ip route 

To verify the BGP details 
Router # show ip bgp summary 
Router # show ip bgp 

To check Neighbor Table 
Router # show ip bgp neighbors 
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Administrative Distance 
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* When ever multiple routing protocols are configured on a router to reach the 
same destination router makes use of Administrative Distance 

* "Lesser the Administrative Distance more the Priority" 


Routing Protocol 

Administrative Distance 

Directly connected 

a 

Static Route 

1 

EIGRP 

90 

OSPF 

110 

RIP 

120 


EBGP 20 
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Ethernet 


ZOOM 

v ECHHQLQglES 




* A technology originated by the University of Hawaii, later adopted by Xerox 
Corporation 

* Ethernet is the most popular physical layer LAN technology. 

* Ethernet standard known as IEEE Standard 802.3 

* Ethernet speed is 10 Mbps. 

* Types of Ethernet 

- Ethernet 

- FastEthernet 

- GigabitEthernet 

- 10 GigabitEthernet 



FastEthernet 
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* The Fast Ethernet standard (IEEE 802.3u) has been established for Ethernet 
networks that need higher transmission speeds. 

* FastEthernet speed is 100 Mbps. 
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Gigabit Ethernet 
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* Gigabit Ethernet was developed for faster communication networks with 
applications such as multimedia and Voice over IP (VoIP) 

* Gigabit Ethernet standards are IEEE 802. 3ab and IEEE 802.3z (optical fiber) 

* Gigabit Ethernet speed is 1000 Mbps i.e. 1 Gbps 



10 Gigabit Ethernet 


ZOOM I 


* 10 Gigabit Ethernet is the fastest and most recent of the Ethernet standards i.e. 
IEEE 802.3ae. 

* 10 Gigabit Ethernet is based entirely on the use of optical fiber connections. 

* 10 Gigabit Ethernet speed is 10000 Mbps i.e. 10 Gbps 
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Broadcast Domain 
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A broadcast domain is a set of network devices for which a broadcast frame 
sent by one device is received by all other devices in that LAN segment. 



Collision Domain 
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* A collision domain is a set of network devices for which a frame sent by one 
device could result in a collision with a frame sent by any other device in the 
same LAN segment. 
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How Switch works ? 
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MAC ADDRESS TABLE 


PORT 

FaO/1 




FaO/2 001C-C01A-0002 

FaO/B 

FaO/4 



How Switch works ? 
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MAC ADDRESS TABLE 
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How Switch works ? 
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"J 
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Types of Switches 


ZOOM 

^TECHNOLOGIES 


* Manageable switches 

- On a Manageable switch an IP address can be assigned and configurations 
can be made. It has a console port . 

* Unmanageable switches 

- On an Unmanageable switch configurations cannot be made, an IP address 
cannot be assigned as there is no console port. 
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Campus Network 
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* Campus is a LAN network supporting larger buildings or multiple buildings 
close to a specific area 

* Cisco uses three terms to describe the role of each switch in a campus design. 

- Access Layer 

- Distribution Layer 

- Core Layer 



Hierarchical Design 
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Cisco's Hierarchical Design for switches 


Access Layer Switches 
Switches Series : 1900, 2950, 2960 
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* Distribution Layer Switches 
Switches Series : 

- Fixed : 3550, 3560, 3750 

- Modular: 4500, 5500 


• Core Layer Switches 
Switches Series : 6500 
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Initial Configuration 
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Switch 


Console 






Vlanl ' 

192 .168. 20 .50/24^ 


\ 

\ 


l 

\ 

J 

f 



Com py ter IP Address 
192,163.20,10 



Duplex and Speed 
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* Switch automatically adjusts duplex mode and speed depending upon remote 
device. 


* We can set duplex mode and speed to match any of the supported modes. 



181 







Interface Speed & Duplex - Configuration 
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Switch (config] # interface < interface type > < no.> 
Switch (config-if) # speed { 100 ] 1000 | 10000 | auto } 


\ j 




Switch (config) # interface < interface type > < no.> 
Switch (config-if) # duplex { full | half } 





Methods of Switching 
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* Cisco switches supports three types of switching 

- Store and Forward 

- Cut Through 

- Fragment Free 
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Store and Forward 


ZOOM 
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* This is basic mode of switching. 

* Switch stores the entire frame into memory and perform CRC check, to ensure 
the frame is not corrupted. 

* A frame less than 64 bytes and greater than 1513 bytes is invalid, only valid 
frames are processed, invalid are dropped. 

* Latency is more 



Cut Through 
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* The switch reads only the first 6bytes of frame that is destination MAC address. 

* As there is no CRC check the corrupted frames are also forwarded. 

* This is the fastest method of switching. 

* Invalid frames are processed. 
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Fragment Free 
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* This is best method for switching. 

* Switch checks only first 64bytes of frame for error. 

* It processes only that frames that have first 64 bytes valid 

* Any frame less than 64bytes is called as RUNT and this frame is invalid. 

* Low latency. 
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Virtual LAN 
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* Divides a Single Broadcast domain into Multiple Broadcast domains. 

* VLANs group interfaces to create a smaller broadcast domain. 

* It provides Layer 2 Security. 

* By default all ports of the switch are in VLAN1. 

* VLAN1 is known as Administrative VLAN or Management VLAN 

* VLAN can be created from 2 - 1001. 

* VLAN information is stored in vlan.dat on the flash memory of the switch. 



How LAN works ? 
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How VLAN works ? 
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192.168,20-0/24 



VLAN - Configuration 
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Creating VLAN 

Switch {config) # vlan < vlan number > 
Switch (config-vlan) # name < name > 
Switch (config-vlan) # exit 




implementation of Vlan 
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r. 
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Switch (config) # interface cinterface type> interface no> 

Switch (config-if) # switch port mode access 

Switch (config-if) # switch port access vlan < Vlan ID > 

Switch (config-if) # exit 



186 










VLAN - Configuratio 
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VLAN - Configuration 


r 


fi 


\ 


SW1 


SW1 (config] # via n ID 
SW1 (config-vlan) # name SALES 
SW1 (config-vlan) ft ex it 
SW1 (config] # via n 2D 
SW1 (config-vlan)# name MKTG 
SW1 (config-vlan) #exit 

SW1 (config) # interface range fastethemetO/1 -2 
SW1 (config-if- range) # switchport mode access 
SW1 (config-if- range) # switchport access vlan 10 
SW1 (config-if-range) # exit 
SWl(config) ft 

SW1 (config) # interface range fastethernetO/S -6 
5W1 (config-if- range) # switchport mode access 
SW1 (config-if- range) # switchport access vlan 20 
SW1 (config-if-range) # exit 


A 
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SW2 


SW2 (config) ft vlan 10 
SW2 (config-vlan) # name SALES 
SW2 (config-vlan) #exit 
SW2 (config) # vlan 20 
SW2 (config-vlan) ft name MKTG 
SW2 (config-vlan) ft exit 

SW2 (config) ft interlace range fastethernetO/1 -2 
SW2 (config-if- range) # switchport mode access 
SW2 (config-if- range) # switchport access vlan 10 
SW2 (config-if- range)# exit 
5 W2 (config) # 

SW2 (config) ft interface range fastethernetO/5 -6 
SW2 (config-if-range)# switchport mode access 
SW2 (config-if-range)# switchport access vlan 20 
SW2 (config-if-range)# exit 
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Switch # show vlan 

Switch # show interface interface type> interface no.> switchport 
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Trunk 
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* Trunk Port allows multiple VLAN traffic to pass through a single physical 
connection by adding a header to Ethernet frame. 

* Trunking protocols of two different types 


ISL (Inter Switch Link) 

802. lq 

Cisco proprietary 

Open standard 


30 bytes (Header + Trailer ) 4 bytes ( Header ) 



VLAN Tagging 
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* VLAN Tagging is used when a link needs to carry traffic for more than one 
VLAN. 


* Each frame has a tag that specifies the VLAN it belongs to. 

* Tag is added to the frame when it goes on to the trunk and tag is removed 
when it leaves the trunk. 

* Switch forwards the frame to a particular VLAN based on tag information. 
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How VLAN Tagging works ? 
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Data 

/ 

MKI 

SWITCH - 1 



Data Vlan 20 



I 


/ 


— f\ / 


Mktg 

Sales 

VLAN 1 \ / 

VLAN 

20 I 1 l 

10 




SWITCH - 2 



PC11 




192.168.20.0/24 


192.168.20.0/24 



Trunk - Configuration 
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Switch (config) # interface interface typo cinterface no> 
Switch {config-if} # switchport mode trunk 
Switch {config-if} # switchport trunk allowed vlan <vlan id / all> 
Switch {config-if) # end 
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Trunk - Configuration 
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Trunk - Configuration 
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SW1 (config)# interface fastethernetQ/24 

SW1 (config-iif}# switch port mode trunk 

SW1 (config-iif}# switchport trunk allowed vlan all 

SW1 (config-if)# A Z 

SWi# 



SW2 (config)# interface fastethernetQ/24 
SW2 (conflg-if}# switchport mode trunk 
SW2 (config-if}# switchport trunk allowed vlan all 
SW2 (config-if}# n Z 
SW2 # 
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Trunk - Verification 


Switch # show interface trunk 

Switch # show interface interface type> interface no.> switchport 



Native VLAN 
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u 


* The native VLAN is the only VLAN whose frames are not tagged on a trunk, i.e. 
native VLAN frames are transmitted unchanged. 

* By default VLAN 1 is native VLAN, we can however configure another VLAN as 
native VLAN. 
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Native VLAN - Configuration 
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Switch (config) # interface interface type> <interface no.> 
Switch {config-if} tt switchport trunk native vlan <vlan id> 
Switch {config-if} tt end 
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Dynamic Trunking Protocol (DTP) 
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* DTP is a Cisco proprietary protocol. 

* DTP is responsible for dynamically negotiates trunks between Switches. 

* DTP is enabled in all Cisco switches by default. 

* DTP modes 


- Dynamic desirable 

- Dynamic auto 
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DTP Modes 
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Command Option 

Description 

Access 

Always act as an access (Non-Trunk) port 


Trunk Always act as a Trunk port 


_ . „ . . . Initiates negotiation messages and responds to 

Dynamic Desirable .... 

negotiation messages to start using Trunking 

Dynamic Auto Passively waits to receive trunk negotiation messages 



DTP Modes 



Dynamic Auto 


Switch 


Dynamic Auto 


Switch 


Switch 


Dynamic Auto 


Switch 


Switch 


Dynamic Auto 


TRUNK 


Dynamic Desirable TRUNK 


ACCESS 


Dynamic Desirable ACCESS 


ACCESS 


Mode Trunk 


Mode Trunk 


Mode Access 


Mode Access 


Dynamic Auto 


Dynamic Desirable TRUNK Dynamic Desirable 


TRUNK D yna mic Desirable 


Switch 


Switch 


Switch 


Switch 


Switch 


Switch 
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DTP- 


Switch (config) # interface <interface type> <interface no.> 

Switch (config-if) # switchport mode { dynamic auto | dynamic 
desirable} 

Switch (config-if) # end 



DTP - Configuration 
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Sales 

VLAN 

10 


Sales 

VLAN 

10 


Mktg 

VLAN 

20 


IPC11 


PC12 


PC13 


PC 14 


PC16 
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DTP- 
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SW1 (config)# interface fastethernetO/24 


SW2 (config)# interface fastethernetQ/24 

SW1 (config -if]# switch port mode dynamic desirable 


SW2 (conffg-ff}# switchport mode dynamic auto 

SW1 (config-ff)#end 


SW2 (conffg-if}# end 

SW1# 


SW2# 






DTP - Verification 


Switch # show interface trunk 

Switch # show interface cinterface type> cinterface no.> switch port 
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VLAN Trunking Protocol (VTP) 
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* Cisco proprietary protocol created to maintain VLAN configuration consistency 
throughout the network. 

* It provides accurate VLAN tracking and monitoring. 

* Dynamic reporting of added VLANs. 

* "Plug-and-play" configuration when adding new VLANs. 

* VTP only works when trunking is configured on FastEthernet or higher ports. 


Note: Switches should be configured with same Domain Name. Domain Names 
are Case sensitive 
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VTP Modes 


ZOOM 

v ECHHQLQglES 



* Server 

- Default mode 

- Create , Modify and Delete VLANs 

- Forwards advertisements 

- Synchronizes 

* Client 

- Cannot create. Modify or delete VLANs 

- Does not store VLAN Information in the NVRAM 


- Forwards advertisements 

- Synchronizes 
• Transparent 

- Create , Modify and Delete local VLANs only 

- Forwards advertisements 

- Does not synchronize 



How VTP works ? 
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VLAN Name 

Status 

1 Default 

Active 

10 Sales 

Active 


/ 


Update 

Tldliapdl tilt 


\ 



VLAN Name Status 


Default Active 


VLAN Name 

Status 

1 Default 

Active 

10 Sales 

Active 
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VTP - Co 
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Switch (config) # vtp mode { server | client | transparent } 
Switch (config) # vtp domain < name > 

Switch (config) # vtp password < password > 





VTP - Configuration 


ZOOM 
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VTP Server 


VTP Client 






SW1 - 192.168.20.50 


Sales 

VLAN 

10 


PCI 


PC2 


Mktg 

VLAN 

20 


SW2 - 192.168.20.51 


Sales 


Mktg 


VLAN 


VLAN 


PC11 


PC12 


PC13 


PC 14 


PC15 


PC16 
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VTP - Co 
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SW1 (config] ff vtp domain ZOOM 

Changing VTP domain name from null to ZOOM 

£W1 (config] fl vtp password CCNA 

Setting device VLAM database password to CCNA 

SW1 (config) fl end 

SW1# 



SWZ (config) # vtp domain ZOOM 

Changing VTP domain name from null to ZOOM 

SWZ (config)# vtp password CCNA 

Setting device VLAN database password to CCNA 

SWZ (config) # vtp mode client 

Setting device to VTP CLIENT mode. 

SWZ (config) # end 
SWZ# 

/ 



VTP - Verification 
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r 

1 

Switch # show vtp status 


Switch ft show vtp password 


L 

A 
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Inter- VLAN Routing 
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* Inter-vlan routing is a process of forwarding the traffic from one vlan to other 
vlan using a router. 

* The port where the router is connected on switch should be configured as 
trunk to allow multiple vlan traffic 

* The physical interface on router is divided into multiple sub-interfaces 

* Each sub-interface is associated with one VLAN and one IP subnet. 

* This is also called as Router on a stick. 
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Routing between VLANs 
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* Routing between VLANs can be done in below ways: 

- Using multiple physical links called as legacy inter-vlan routing 

- Using a single link and creating sub-interfaces called as router on a stick 

- Using the multi layer switch. 



Routing between VLANs using multiple physical links 




HYD-l 


Fa 0/0 

192.168.110.254/24 


120.254/24 
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Routing between VLANs using single physical link 
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HYD-1 


Fa 0/0.10 1 Fa 0/0.20 
192.168.110.254/24 | 192.168.120.254/24 




Routing between VLANs using Multi-layer Switch 


ZOOM 


V 


TECHNOLOGIES 



192.168.110.254/24 


MULTILAYER SWITCH 


192.168.120.254/24 


192.168.120.0/24 
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Router on a Stick - Configuration 


Creating Sub Interface 

Router (config) ft interface FastEthernet 0/0 , < no. > 
Router (config-subif) ft encapsulation dotlq < vlan id > 
Router (config-subif) ft ip address < ip > < subnet mask > 
Router (config-subif) # exit 


r 


Enabling IP Routing 


Router (config) # ip routing 


L 

J 



Router on a Stick - Configuration 
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ROUTER 


Fa 0/0, 


0/0.2 


192.168.110.2S4/24 I 192.168.120.254/24 


\ 
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Router on a Stick - Configuration 
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ROUTER (config) # interface FastEthernet 0/D 

ROUTER (config-if) # no shutdown 

ROUTER (config-if) # exit 

ROUTER (config) # interface FastEthernet 0/0*1 

ROUTER (config-subif) # encapsulation dotlq 10 

ROUTER (config-subif) # ip address 192,16B,110*254 255*255,255.0 

ROUTER (config-subif) # exit 

ROUTER (config) # interface FastEthernet 0/0*2 

ROUTER (config-subif) # encapsulation dotlq 20 

ROUTER (config-subif)# ip address 192, 16B, 120.254 255.255, 255.0 

ROUTER (eonfig-subif) # exit 

ROUTER (config) # ip routing 

ROUTER (config)# 



Router on a Stick - Verification 
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Router # show ip route 


\ ■ 
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Cisco Discovery Protocol (CDP’ 


* It is a Cisco proprietarv protocol. 

* CDP is enabled by default in all Cisco devices. 

* CDP advertisements are sent through all the ports by default. 

* CDP Advertisement are sent every 60 seconds. 

* CDP Advertisements are sent via multicast address 01:00:0c:cc:cc:cc. 
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Advantages of 
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* Once Layer 1 is active CDP sends the information to its active neighbors. 

* It can be used for Layer 1 , Layer 2 , Layer 3 troubleshooting. 

* Information advertised by CDP 

- Logical address (if defined) 

- Hostname 

- Hardware Platform 


- IOS Version 

- Interface Type and Interface Number of local and remote device connected. 
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CDP - Configuration 
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CDP - Configuration 
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SW1 (config) # cdp run 



SW1 



SW2 (config) # cdp run 





& 
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p 

N 
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CDP - Verification 
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Switch # show cdp neighbors 
Switch # show cdp neighbor detail 


\ 



Disadvantages Of CDP 
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* CDP can be used only between Cisco devices. 

* Information about only directly connected neighbors can be known. 
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Link Layer Discovery Protocol (LLDP) 


ZOOM I 


* Open Standard Protocol - IEEE S02.1AB 

* LLDP is a neighbor discovery protocol used by devices for advertising 
information about themselves to other devices on the network. 

* By default it is disabled on cisco devices, we need to manually enable it on 
devices. 

* LLDP Advertisement are sent every 30 seconds. 

* LLDP Advertisements are sent via multicast address 01:80:c2:00:00:0e. 
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LLDP - Configuration 




Switch (config) # lldp run 
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LLDP - Verification 

Switch # show lldp neighbors 
Switch # show lldp neighbor detail 
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Redundant Topology 
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* To eliminate single point of failure, backup links are used. 


* This type of network is called as a redundant topology. 
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Problems in Redundant Topologies 
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* Redundant topology causes 

- Multiple frame copies 

- MAC address table instability 

- Broadcast storms 

* The above problems are collectively called layer 2 switching loops. 



Problems in Redundant Topologies 
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Sparming-tree Protocol 
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V ECHMQLQglES^ 


Spanning-tree protocol is used in switched network to avoid switching loops 
It uses spanning-tree algorithm 
STP blocks redundant paths that could cause a loop 
STP is a open standard {IEEE 802. ID) 




STP Terminology 


ZOOM 

^TECHNOLOGIES 


• Root Switch 

- The switch with the best (lowest) Switch ID. 

- Out of all the switches in the network, one switch is elected as a Root 
switch. This Root switch becomes the focal point of the network. 


• Switch ID 

- Each switch has a unique identifier called a Bridge ID or Switch ID 

- Bridge ID = Priority + MAC address of the switch 

- Default priority is 32768 

• Non-Root Switch 

- All switches other than the Root switch are called Non-root switches. 

|| — IMIW 
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STP Terminology 
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• BPDU 

- Switches exchange information using Bridge Protocol Data Units {BPDUs) 

- BPDUs contain information that helps the switch to determine the topology 

- BPDUs are sent every 2 sec 



STP Port states 


ZOOM 

^TECHNOLOGI ES 



States 

Forward frames 

Learn Mac-Address 

BPDU 

Duration 

Blocking 

No 

No 

Receives 

20 seconds 

Listening 

No 

No 

Sent/receive 

15 seconds 

Learning 

No 

Yes 

Sent/receive 

15 seconds 

Forwarding 

Yes 

Yes 

Sent/receive 
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Switch Election 


Fa 0/24 


I am Non-Root 


Switch ID: 3276S. 0001. 


Root ID: 3276S. 


BPDU Root ID: 32768. 


I am Root 



. 0000.0001 


ZOOM 

M ECHNQLQglES^ 



Fa 0/23 


I am Non-Root 


Switch ID: 32768. 0001.0000.0002 




Root ID: 32768. 0001.0000.0001 


Switch ID: 32768. 0001.0000. 


Root ID: 32768. 0001.0000.0001 



BPDU Root ID: 32768. 0001. 



.0002 


STP Terminology 
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* Root port 

- Every Non-Root Switch must have a Root port 

- Only one port per switch can be the Root port 

- All Root ports will be in forward state 

- A Switch's Root port is the port closest to the Root Switch 

* The port with the least cost 

* The port with the lowest Neighbor switch ID 

* Lowest Physical Port Number 
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IEEE Cost Values 
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Type 

Cost Value 

Ethernet 

100 

Fast Ethernet 

19 

Gigabit Ethernet 

4 

10 Gigabit Ethernet 

2 





Non-Root 


Root 

Port 


Fa 0/23 




Li : _\ 

1 

Fa 0/23 19 Fa 0/24 

C 


Non-Root 


Switch ID: 32768. 0001,0000. 


2 


Switch ID: 32768. 0001.0000.0003 

Root ID: 32768. 0001.0000.0001 

Root ID: 32768* 0001.0000.0001 



218 


















Designated Port Election 
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* Designated port 

- For Every segment there will be a Designated port 

- A designated port will always be in Forward state 

* The port with the least cost 

* The port with the lowest Neighbor switch ID 

* Lowest Physical Port Number 

- All ports(Trunk ports) on the Root bridge are Designated ports 



Designated Port Election 


ZOOM 



68.0 


Root ID: 32768. 000 





ECH HO LOGIES 





Switch ID: 32763. 0001,0000.0002 I Designated Switch ID: 32768. 0001.0000.0003 

J p ort 

Root ID: 32768. 0001.0000.0001 Root ID: 32768. 0001.0000.0001 
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STP Terminology 


• Non-Designated port 

- The ports that are neither Root ports nor the Designated ports 

- These ports are blocked by STP 



Root 


Election 
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: 32768. 00 


Root ID: 32768. 000 
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Switch ID: 32768. 0001.0000.0002 


Root ID: 32768. 0001.0000.0001 



Switch ID: 32768. 0001.0000.0003 


Root ID: 32768. 0001.0000.0001 
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SIP - Configuration 
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STP - Configuration 


ZOOM 

^TECHNOLOGIES 




24 


\ 


SWl - 192.168.20.50 


23 




24 


-I 


23 


\ 


SW2 - 192.168.20.51 
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STP - Configuration 
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SW1 (config) # spar ning-tree vlan 1 root primary 


SWl (config) # spanning-tree vlan 1 root secondary 



STP - Verification 
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Types of Spanning Tree Protocols 
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• Common Spanning Tree (CST) 

- Open Standard - IEEE 802.1D 

- One spanning-tree instance for entire switch network regardless of the 
number of vlans. 

• Per Vlan Spanning Tree (PVST+) 

- Cisco Proprietary 

- Spanning tree instance for each vlan configured in network 

• RSTP 


- Open standard - IEEE 802. lw 

- Enhanced version of STP. 

- Adding roles to ports and enhances to BPDU exchanges. 



Types of spanning tree protocols 


ZOOM 

VTE CHNOLOOIES 


* Rapid PVST (RPVSTP) 

- A cisco enhancement of RSTP using PVST+ 

* Mutiple Spanning Tree (MST) 

- Open standard - IEEE 802.1s, 

- Maps multiple VLANs to same spanning tree instance. 
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Comparison of spanning tree protocols 
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Protocol 

Standard 

Resources needed 

Convergence 

Number of STP Instances 

STP 

802. ID 

Low 

Slow 

One 

PVST+ 

Cisco 

High 

Slow 

One for every VLAN 

RSTP 

802. 1W 

Medium 

Fast 

One 

Rapid PVST+ 

Cisco 

Very high 

Fast 

One for every VLAN 

MST 

802. IS 

Medium or high 

Fast 

One for multiple VLAN 



Disadvantage of 5 

m 

' - On Access Ports 
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* Spanning-Tree protocol is running by default on all ports of the switch. 

* The spanning-tree protocol makes each port wait up to 50 seconds before data 
is sent on the port. 

* Th is delay in turn can cause problems with some applications/protocols. 

* To solve above issue, Portfast can be implemented on Cisco Switches. 
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PortFast 
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* Portfast allows a port to switch from disabled to forwarding state bypassing 
the listening and learning states. 

* The portfast feature can be enabled on a port where there are no Bridges and 
switches connected, otherwise it may create loops. 

* Portfast is recommended to be enabled on a port where end user devices 
(hosts) are connected. 
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Portfast - Configuration 
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Configure Portfast for a Switch (All interfaces) 
Switch (config) # spanning-tree portfast default 


r 




Configure Portfast for an interface 


Switch (config) # 

interface interface typo interface no.> 


Switch (config-if) # spanning-tree portfast 


^ Switch (config-if) 

# end 

J 
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Portfast - Configuration 
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SW2 - 192.168.20.51 


1 


4 


5 6 





4 


5 6 
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- Verification 


Switch # show spanning-tree 
Switch # show spanning-tree summary 



BPDU Guard 
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* The Cisco BPDU guard feature disables the port, if any BPDUs are received on 
the port. 

* This is recommended to be enabled on a port where Portfast is configured, 
because if any switch connects to such a port, the local switch can block the 
port preventing loops. 
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Configure BPDU Guard for a Switch (All Interfaces) 
Switch (config) # spanning-tree bpduguard default 


r ^ 

Configure BPDU Guard for an interface 
Switch (config) ft interface interface typo interface no.> 

Switch (config-if) ft spanning-tree portfast bpduguard enable 
Switch (config-if) ft end 

L J 
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BPDU Guard - Configuration 


ZOOM 
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1 


2 3 



SW2 - 192.168.20.51 



2 


3 


4 


5 


6 
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BPDU Guard - Verification 


Switch # show spanning-tree 
Switch # show spanning-tree summary 
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Issue with Redundant Link 


ZOOM 




ECHMOLOGIES 


D 


To avoid a single point of failure we go with redundancy. But whenever the 
redundant link is seen switch blocks a link to avoid loops. 



Etherchannel 


ZOOM 

k^TECH NO LOGIES 


* Etherchannel combines two or more physical links into one logical link. 

* The purposes of aggregating link is achieve the full bandwidth, load balancing 
and redundancy. 

* Generally configured between switch to switch, switch to router, switch to 
firewall. 


* Etherchannels can consist of up to eight interfaces. 

* To create etherchannel all the ports needs : 

- Same Physical ports (Ethernet or Fiber) 

- Speed 

- Duplex 

- Either ports should be access or trunk 

- Native and allowed vlan on trunk ports 
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Etherchannel 


zoom] 

V ECHNQLQglES^ 


Port Channel 1 



Etherchannel Configuration 


ZOOM 

^TECHNOLOGIES 


* Static 


• Port Aggregation Protocol (PAGP) 

* Link aggregation control protocol (LACP) 
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Port Aggregation Protocol (PAGP) 


ZOOM 
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* It is a cisco proprietary. 

* It has two modes 

- Desirable 

* Interface will actively ask the other side to form Etherchannel. 

- Auto 

* Interface will wait passively for other side to ask to form Etherchannel. 


PAgP 




/ 

I 1*11 
I nfiwi 


Link Aggregation Control Protocol (LACP) 


ZOOM 

^TECHNOLOGIES 


* It is an open standard protocol (IEEE 802. 3ad) 

* It has two modes 


- Active 

* Interface will actively ask the other side to form Etherchannel. 

- Passive 


* Interface will wait passively for other side to ask to form Etherchannel. 


LACP 
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Etherchannel - Configuration 









Etherchannel - PAGP 

Switch (config) # interface cinterface type> cinterface no.> 
Switch (config-if) # channel-protocol pagp 
Switch (config-if) # channel-group 1 mode { desirable | auto } 
Switch (config-if) # end 


Etherchannel - IACP 

Switch (config) # interface cinterface typo cinterface no.> 
Switch (config-if) # channel-protocol lacp 
Switch (config-if) # channel-group 1 mode { active | passive } 
Switch (config-if) # end 
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r, 
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Etherchannel - Configuration 


ZOOM 

^TECHNOLOGIES 


Port Channel i 
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Etherchannel - Configuration 



ZOOM 
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J 


\ 


Switch (config) # interface range fastethernet 0/23 
Switch (config-if)# channel-protocol pagp 
Switch (config-if)# channel-group 1 mode desirable 
Switch (config) # interface range fastethernet 0/24 
Switch (config-if)# channel-protocol pagp 
Switch (config-if)# channel-group 1 mode desirable 
Switch (config-if) # end 



Switch (config) # interface range fastethernet 0/23 
Switch (config-if) # channel-protocol pagp 
Switch (config-if) # channel-group 1 mode auto 
Switch (config) # interface range fastethernet 0/24 
Switch (config-if)# channel-protocol auto 
Switch (config-if) # channel-group 1 mode desirable 
Switch (config-if) # end 


A 


I 


\ 


CUP 
G C N A 


j 


S l „ — ' \ 

Switch (config) # interface range fastethernet 0/23 


Switch (config)# interface range fastethernet 0/23 

Switch (config-if)# channel-protocol lacp 


Switch (config-if)# channel-protocol lacp 

Switch (config-if) # channel-group 1 mode active 


Switch (config-if) # channel-group 1 mode passive 

Switch (config) # interface range fastethernet 0/24 


Switch (config)# Interface range fastethernet 0/24 

Switch (config-if)# channel-protocol lacp 


Switch (config-if) # chan in el- protocol lacp 

Switch (config-if) # channel-group 1 mode active 


Switch (config-if) # channel-group 1 mode passive 

Switch (config-if) # end 


Switch (config-if) # end 

^ j 





Etherchannel - Verification 


Switch # show etherchannel 1 summary 
Switch it show interface port-channel 1 
Switch # show etherchannel port-channel 
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Port Security 
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* Port Security is used to control network access based on the following: 

- MAC Address 

- Number of MAC Addresses per port 

* If any violation takes place the following actions can be configured: 

- Shutdown 


- Restrict 


- Protect 
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Violation Modes 


ZOOM 
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* Shutdown 

- The port becomes error disabled and the port LED turns off. 

* Protect 

- Frames with unknown source MAC address are dropped. It does not notify 
that a security violation has occurred. 

* Restrict 

- Frames with unknown source address are dropped. It gives a notification 
(log message) that security violation has occurred. 



Port Security & Error Recovery - Configuration 

Switch (config) # interface interface type> interface no.> 

Switch (config-if) # switchport mode access 

Switch (config-if) # switchport port-security maximum <value> 

Switch (config-if) # switchport port-security mac-address <mac-address> 

Switch (config-if) # switchport port-security violation { protect | restrict | 

shutdown } 

Switch (config-if) # switchport port-security 


Switch (config) # errdisable recovery cause <cau$e> 
Switch (config) # errdisable recovery interval <seconds> 


ICCIII 
c c N 
C C N 
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Port Security & Error Recovery - Configuration 
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\ 


SW1 - 192,168.20.50 




Port Security & Error Recovery - Configuration 


ZOOM 
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/ 


SW1 


\ 


■\ 


SW1 (con fig)# interface fastethernetO/2 

SW1 (config-if)# switch port mode access 

SW1 (config-if)# switch port port -security maximum 1 

SW1 (config-if)# switch port port-security mac-address 0013. 20B7. 1232 

SW1 (config-if)# switch port port-security violation shutdown 

SW1 (config-if)# switch port port-security 

SW1 (config-if)# exit 

SW1 (config) # errdisable recovery cause p sec u re-viol at ion 
SW1 (config) # errdisable recovery interval! 30 
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Port Security & Error Recovery - Verification 



Switch # show port-security interface interface 

Switch # show interface status 

Switch # show port-security 

Switch # show port-security address 


interface no.> 


Switch # show errdisable recovery 
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Switched Port Analyzer (SPAN 
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* A SPAN port mirrors traffic from a defined port to another port where a 
Network Anazlyer / Monitoring Device is connected. 

* Network engineers or administrators use SPAN to analyze and debug data or 
diagnose errors on a network. 

* Network analyzer software is used for analyzing the captured data, 
i.e. Wireshark, Ethereal, etc. 



SPAN - Configuration 


ZOOM 
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Switch (config) # monitor session <no.> source interface 

cinterface type> cinterface no.> 

Switch (config) # monitor session <no.> destination interface 

cinterface type> cinterface no.> 
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SPAN ’ Configuration 
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SPAN - Configuration 


ZOOM 
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S W1 (config) # monitor session 1 source interface FastEthernet 0/11 
SW1 (config) # monitor session l destination interface FastEthernet 0/2 
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SPAN - Verification 


ZOOM 
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Switch (config) # show monitor 
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Access Control List (ACL) 


ZOOM 


M! 


ECH MO LOGIES 


D 


Access Control List are a group of commands configured on router to control 
the flow of traffic from one network to another network. 


* It provides layer 3 and layer 4 security. 

* The router examines each packet to determine whether to forward or drop it, 
based on the conditions specified in the ACL. 



Functions of ACL's ? 


ZOOM 

^TECHNOLOGIES 


* Controls network traffic to improve network performance 

* Provide a basic level of security for network access. 

* Can filter traffic based on type of traffic. 

- i.e. ACL can allow Web Traffic and block all Email traffic 
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Access Control List (ACL) 


ZOOM 

\ tech 


MOLGGIES 



Fa 0/0 
192. 16B. 201.1 


Network ID / Mask 


192.163.202.0/24 


Fa 0/0 

192.168.203. 1 



192.168.203.0/24 


192,168,203,10 host should not communicate with 192,168.202.0 network 



Terminology 


ZOOM 

V ECH HO LOGICS, 


* Deny : Blocking a network/subnet/host/service. 

* Permit : Allowing a network/subnet/host/service. 

* Source Address : The address from where the request starts. 

* Destination address : The address where the request ends. 

* Inbound : Traffic coming into the interface. 

* Outbound : Traffic going out of the interface. 
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Terminology 


ZOOM 

Vi CHNOLOGIES 



* Protocols : IP (Internet Protocol) 

- TCP (Transmission control protocol) 

- UDP {User datagram protocol) 

- ICMP (Internet control messaging protocol) 

* Operators : 

- eq (equal to) 

- neq (not equal to) 

- It (less than) 

- gt (greater than) 

* Services : HTTP (80), FTP (20,21), TELNET (23), DNS (53), DHCP (67,68) 



Wildcard Mask 


ZOOM 

VTE CHNOLOOIES 


* It's the inverse of the subnet mask, hence is also called as inverse mask. 

* A bit value of 0 indicates MUST MATCH (Check Bits). 

* A bit value of 1 indicates IGNORE (Ignore Bits). 

* Wildcard Mask 

- For a host is 0. 0.0.0 

- For Class A network is 0.255.255.255 

- For Class B network is 0.0.255.255 

- For Class C network is 0.0.0.255 
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Wild Card Mask 
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* A wild card mask can be calculated using the formula : 

Global Subnet Mask 
- Subnet Mask 


Wild Card Mask 



- 255.255.255. 0 


255.255.255.255 

- 255.255.255.240 


0. 0. 0.255 


0. 0. 0. 15 



Working of Access Control List 


ZOOM I 


* Works in a sequential order from top to bottom. 

* If a match is found it does not check further. 

* There should be at least one permit statement. 

* An implicit deny blocks all traffic by default when there is no match (an 
invisible statement). 

* New entries are automatically added to the bottom. 

* Can have one access-list per interface per direction. 

* Removing of specific statement in a numbered access-lists is not possible. 
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Types of Access-List 


ZOOM 
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ACL 



IPv6 



r 1 

Extended 

L J 





Standard Access Control List 

(IPv4) 
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Standard Access List 
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* The access-list number range is 1 - 99. 

* Can filter a network, subnet or host. 

* Two way communication is stopped. 

* All services are either blocked or allowed. 

* Filters traffic based only on the source address. 

* Implemented closest to the destination. (Guideline) 




1 — mM 
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Standard ACL - Numbered - Configuration 


ZOOM 
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Fa 0/0 
192.168.201.1 


■II 


Network ID I Mask 


192.168.201.0/24 



Fa 0/0 

192.168.203.1 



m m g 


Network ID / Mask 


192.168.203.0/24 


192.168.202.0/24 


192,168.201.10 host should not communicate with 192*168.202.0 network 



Standard ACL - Numbered - Configuration 


ZOOM 


.TECHNOLOGIES, 



HYD-1 # configure terminal 

Enter configuration commands, one per line. End with CNTL/Z. 
HYD-1 (config) n access-list 10 deny 192.16S.201.10 Q.0.0.0 
HYD-l (config) # access-list 10 permit any 


HYD-1 (config) # 


HYD-1 (config) U interface FastEthernet 0/0 
HYD-l (conflg-if) # ip access-group 1 out 
HYD-1 (config-if) # end 
HYD-1# 
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Standard ACL - Numbered - Verification 


ZOOM 
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Router # show ip access-lists 



How does a Standard ACL work? 


ZOOM 
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Switch 


mmm 


Network ID / Mask 


192,168.203.0/24 




o/o/i 


Fa 0/0 
192.168,201.1 


0/0 


172 


16 


S 0/0/0 
172, 17.0+1 


h 0/0 

192.163. Z02.1 


Network ID / Mask 


192.168,201 0/24 


Switch 


so/i 

172,17-0,2 


Fa 0/0 

192,168-203,1 
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How does a Standard ACL work ? 


Network ID / Mask 


1 92.1 6&.201. 0/24 


ZOOM 

\ JECH 


MO LOO ! E5 




access-list 1 deny 192.163.201.10 0.0. 0.0 


access-list 1 permit any 


Network ID / Mask 





How does a Standard ACL work ? 


ZOOM 




TECH MO LOGIES 



Network ID / Mask 


192.163.202.0/24 


Fa 0/0 
192.163,201*1 


0/0 


172,16,0,1 


S 0/0/0 
172.17,04 


h 0/0 

192.163. Z02.1 


Network ID / Mask 


192.168.203.0/24 


Network ID / Mask 


192.108,2010/24 


Switch 


so/i 

172.17,0,2 


Fa 0/0 

192,163.203,1 


S 0/0/1 
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How does a Standard ACL work ? 
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Standard ACL - Named- Configuration 
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Fa 0/0 
192.168.201.1 


■II 


Network ID I Mask 


192.168.201.0/24 



Fa 0/0 

192.1GS.203.1 




Network ID / Mask 


192.168.203.0/24 


192.168.202.0/24 


192.168.203.10 host should communicate with 192.168.202.0 network 



Standard ACL - Named- Configuration 



HYD-i # configure terminal 

Enter configuration commands, one per line* End with CNTL/Z. 
HYD-1 (config) ft ip access-list standard zoom 
HYD-1 (config-std-nacl} ft permit 192.168.203.10 0.0.0.0 
HYD-1 (config-std-nacl) ft exit 
HYD-1 (config) ft 



HYD-1 (config) ft interface fastethernet 0/0 
HYD-1 (config-if) ft ip access-group zoom out 
HYD-1 (config-if) ft end 


HYD-1# 

V 



ZOOM 

^TECHNOLOGIES 
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Standard ACL - Named - Verification 


ZOOM 
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Router # show ip access- 
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Extended Access List 


ZOOM 

CHNOLOOIES 




* The access-list number range is 100 - 199. 

* Can filter a network, subnet, host and service. 

* One way communication is stopped. 

* Selected services can be blocked or allowed. 

* Filters traffic based on the source address, destination address and service. 

* Implemented closest to the source. (Guideline) 



Extended ACL - Numbered - Configuration 


Creation of Extended Access List - Numbered 


Router 


# access-list <acl no> <permit/deny> <protocol> 
<source address> <source wildcard mask> 
destination address> < destination wildcard mask> 
<operator> <service> 


Implementation of Extended Access List- Numbered 

Router (config) ft interface <interface typo <interface no> 
Router(config-if) ft ip access-group <number> <out/in> 


CCItl 


e c 
c c 


254 







Extended ACL - Numbered - Configuration 


t 


Fa 0/0 
192.168.201.1 


Sal 


Network ID / Mask 


192.168.201.0/24 


Network ID / Mask 


192.168.202.0/24 


ZOOM 

\ tech 


MOLGGIES 



Fa 0/0 

192,168.203.1 



HBB 


Network ID / Mask 


192.168.203.0/24 


192.168.202.0 network should not access 192.168.203.10 Host (Web service) 
192.168.202.0 network should not ping 192.168.201.0 Network 


1 1 i r r 

e c n i 


Extended ACL - Numbered - Configuration 


ZOOM 
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"\ 

HYD-1 # configure terminal 

Enter configuration commands, one per line. End with CNTL/Z. 

HYD-1 (configj fl access-list 101 deny tcp 192.168.202.0 0.0.0.255 192.168.203,10 0.0.0.0 eq www 
HYD-1 (config) # access-list 101 deny icmp 192 + 168 + 202 + 0 0,0,0,255 192,168.201,0 0.0,0,255 echo 
HYD-1 (config) # access-list 101 permit ip any any 

HYD-1 (config) fl interface FastEthernet 0/0 
HYD-1 (config-if) # ip access-group 101 in 
HYD-1 (config-if) # exit 

/ 
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Extended ACL - Numbered - Verification 
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Router # show ip access-lists 



How does an Extended ACL work ? 


ZOOM 

^TECHNOLOGIES 



Fa 0/0 
192.163,201,1 


192,168.201,0/24 


Fa 0/0 

192,168,2034 



192,168.203.0/24 


Network ID / Mask 


192 . 168 . 202 . 0/24 



256 






























How does an Extended ACL work ? 
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Network ID / Mask 


192,168,202,0/24 


Network ID / Mask 



■ 


access-list 101 deny tcp 102.168.202.0 0.0.0.255 192.168.203.10 0.0.0.0 eq 80 



access-list 101 deny icmp 192,168.202,0 0.0.0.255 192,168.201.0 0,0,0.255 echo 
access-list 101 permit ip any any 



IP- 

ICC 111 


■ 

E 
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How does an Extended ACL work ? 
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'J 


Fa 0/0 
192,163,201,1 


192.168.201,0/24 


Fa 0/0 

192,168.203.1 



192.168.203.0/24 


Network ID / Mask 


192.168.202.0/24 
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How does an Extended ACL work ? 
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Destination I Panel Port 


192 , 168 . 203.10 - 23 


Mask 


192 , 160 . 202 . 0/24 


DATA 



Network ID / Mask 


192 . 160 . 203 . 0/24 



access-list 101 deny tep 192.168.202.0 0.0.0.255 192.168.203.10 0.0.0.0 eq 80 
access-list 101 deny iemp 192.168.202,0 0.0.0,255 192.168.201,0 0,0.0,255 echo 


access-list 101 permit ip any any 



Extended ACL - Named - Configuration 


Creation of Extended 


List - Named 


ZOOM 


TECHNOLOGIES 


Router 

Router 


(config) # ip access-list extended <acl name> 

:-ext-nacl # <permit/deny> <protocol> 

< source address> <source wildcard mask> 
destination address> < destination wildcard mask> 
<operator> <service> 


Implementation of Extended Access List - Named 

Router (config) # interface cinterface typo cinterface no> 
Router (config-if) # ip access-group <acl name> <out/in> 


fill 
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Extended ACL - Named - Configuration 


t 


Fa 0/0 
192.168.201.1 


Sal 


Network ID / Mask 


192.168.201.0/24 


Network ID / Mask 


192.168.202.0/24 


ZOOM 

\ tech 


MOLOGIES 



Fa 0/0 

192.1GS.203.1 



MB 


Network ID / Mask 


192.168.203.0/24 


Only 192.168,202.10 Host should access 192.168.201.10 Host (FTP service) 
192.168.202.0 Network should access any Network (Telnet Service) 


t c i r r 
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Extended ACL - Named - Configuration 


ZOOM 
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HYD-1 ft configu re terminal 

Enter configuration commands, one per line. End with CNTL/Z. 

HYD-1 (config) If ip access-list extended cisco 

HYD-l(config-ext-nacl)*l permit tcp 192.168.202.10 0.0.0.0 192.168.201.10 O.O.O.Oeq ftp 
HYD-l(config-ext-nacl) # permit tcp 192.168,202.0 0.0.0.255 anyeq telnet 
HYD-l(config-ext-nacl) # exit 
HYD-1 (config) ft 

HYD-1 (config) ft interface FastEthernet 0/0 
HYD-1 (config-if ) ft ip access-group cisco in 
HYD-1 (config-if) ft exit 

J 
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Extended ACL - Named - Verification 
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Router # show ip access- 
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IPv6 ACL - Configuration 


Creation of IPv6 Access List 


Router (config) # ipv6 access-list <acl name> 


Router fconfig-ipv6-acl) # <permit/deny> <protocol> 


<IPv6 source address> <prefix length> 


< IPv6 destination address> <prefix length> 


<operator> <service> 


Implementation of IPv6 Access List 


Router (config) # interface interface type> interface no> 
Router (config-if) # ipv6 traffic-filter <acl name> <out/in> 


■ c C N P ■ 

i e c h it | 


IPv6 ACL - Configuration 


ZOOM 

TECHNOLOGIES 


Fa 0/1 Fa 0/1 






2001:1111::10/128 should not access 2001:1111:: 10/128 Host (Web service) 


/ rrrn 

1 
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IPv6 ACL - Configuration 
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HYD-1 # configure terminal 

Enter configuration commands, one per line. End with CNTL/Z* 

HYD-1 (config) # ipvB access-list cisco 

HYD-1 {config-ipv6-acl} # deny tcp Z001;1111;;10/1Z8 2001;Z2Z2;;10/128 eq 80 
HYD-1 (config-ipv6-ad} # permit ipv6 any any 
HYD-l(config-ipv6-acl) # exit 
HYD-1 (config) # 




HYD-1 (config) # interface Fast Ethernet 0/0 
HYD-1 (config-if) # ipvG traffic-filter cisco in 
HYD-1 (config-if) W exit 
HYD-1 (config)# 
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IPv6 ACL - Named - Configuration 
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^TECHNOLOGIES 


Router # show ip access-lists 
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Default Routing 


ZOOM I 


* A default route or gateway of last resort, allows traffic to be forwarded, even 
without a specific route to a particular network. 

* The default route is identified by all zeros in both the network and subnet 
mask (0.0.0.0 0.0.0.0) 

* It is generally configured for accessing Internet, where destination is unknown. 

* It is the least preferred route in the routing table. 
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Default Routing on IPv4 Network - Configuration 



Router (config) # ip route < Destination Network ID > 

< Destination Subnet Mask > < Exit Interface Type > 

< Exit Interface No. > 



Default Routing on IPv4 Network 



zoom] 

TECHNOLOGIES^ 


Interface 

Network ID / Mask 

Fa 0/0 

192,168.201,0/24 



ICC 1 El 


r. 

G C N P 
C N 



so/o 


202.1 -0.16/29 
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Default Routing on IPv4 Network - Configuration 
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tea# 


"\ 


CHE # configure terminal 

Enter configuration commands, one per line* End with CMTL/Z* 

CHE (conflg) # Interface serial 0/0 

CHE (config-if] # ip address 202.1.0.18 255.255.255.248 

CHE (config-if}# no shutdown 

CHE (config-if) # encapsulation ppp 

CHE (config-if) # exit 

CHE (conflg)# 

CHE (conflg) # ip route 0.0. 0,0 0.0. 0.0 SerialO/O 



ICC 111 


r, 

C C N P 
C N 



Default Routing on IPv4 Network - Verification 
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ECH HO LOGIES 





Router # show ip route 


/ 
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NAT 
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* NAT is a process of changing one IP into another 

* NAT is used to save precious public IP addresses. 

* NAT is usually used to translate private IP addresses to public IP addresses and 
vice versa 

* It provides security 

* Types of NAT 

- Static (one to one mapping) 

- PAT (many to one mapping) 
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Private IP Address 
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* There are certain addresses in each class of IP address that are reserved for 
Private Networks. These addresses are called private addresses. 

* These addresses are not Routable (or) valid on Internet. 



Class A 

10.0.0.0 to 10.255.255.255 



Class B 

172.16.0.0 to 172.31.255.255 



Class C 

192.163.0.0 to 192.163.255.255 




Public IP Address v/s Private IP 


r. 


ZOOM 

V ECHMOLOGieS 


u 



ClP 



Private IP Address 


» Used on the Internet 
(i.e. Public Network) 

• It should be unique over the 
Internet. 

• Assigned by the Internet Service 
Provider. 

• Need to purchased from Internet 
Service Provider. 


Used within the Organization 
(i.e. Private Network or LAN) 

It should be unique within the LAN 
or Organization 

Assigned by Network Administrator 




• FREE 




P 

ICG 111 
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* One private IP address is mapped to one public IP address. 

* Generally used for hosting public servers. (Internet to Server) 

* Generally configured for inbound traffic. 


ZOOM I 
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How does Static NAT works ? 
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Source IP and Port 


61 . 0 . 0.10 - *000 


Destination IP and Port 


192*168.201' 10 - SO 


DATA 


http 

request 


Fa 0/0 
192.168,201,1 




Source IP and Port 


r WVHV V Vi ■ ■ uni W I W I U, 

DATA 

! Destination IP and Port 


202.1.0.19 - 80 


Switch 




TRANSLATION TABLE 

1 

inside global 

INSIDE LOCAL 

OUTSIDE LOCAL 

OUTSIDE GLOBAL 

202*1.0*19 

192.168.201*10 

■■■ 

— 

202,1.0.20 

192.168.201.20 




Source IP and! Port 
Destination IP and Pott 


202,1.0.19 - 80 



.X cum s 

iJii 

II ■mHWM 


interface Network ID / Mask 


Fa 0/0 192.168.201.0/24 

S 0/0 202.1. Q.1 6/29 



How does Static NAT works ? 


Source IP and Port 

DATA 

1 1 ii 3TB 

| £• jjj pj 

192.168.201.10 ~ 80 

Destination IP and Port 

61.0.0.10 - 3000 

- - - 




Fa 0/0 
192.168.201.1 


/ 



ZOOM 

CH no LOGICS 



-\ 


Switch 


Source IP and 
Destination IP and Port 


0.10 - 3000 




TRANSLATION TABLE 

1 

INSIDE GLOBAL 

INSIDE LOCAL 

OUTSIDE LOCAL 

OUTSIDE GLOBAL 

202,1,0,19 

192,168,201,10 



202.1,0,20 

192.168.201,20 







Interface Network ID / Mask 


Fa 0/0 192.168.201.0/24 

S 0/0 202.1.0.16/29 
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NAT - 


Defining NAT on Interfaces 


Router 

Router 


# interface cinterfaee type> cinterface number> 
if) # ip nat inside/outside 


Configuring static NAT 


Router (config) # ip nat inside source static <private ip> <public ip> 



Static NAT - Configuration 



10 





ZOOM 

^TECHNOLOGIES 


Interface 

Network ID / Mask 

Fa 0/0 

192,168.201,0/24 


i 


' 

VO 0 1 El 


r. 

G C N P 
C N 



so/o 


202.1 -0.16/29 
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NAT - Configuration 


ZOOM 

M ECHHQLQglES 




CHE # configure terminal 

Enter configuration commands, one per line* End with CNTL/Z* 

CHE (config) # interface serial 0/0 

CHE (config-if) U ip naf outside 

CHE (config-if)# exit 

CHE (config) # interface Fast Ether net 0/0 

CHE (config-if) # ip nat inside 

CHE (config-if) # exit 

CHE (config)# ip nat inside source static 19Z.168.201.10 202,1.0,19 

/ 



Static NAT - Verification 


ZOOM 

^TECHNOLOGIES 


r ^ 

Router # show ip nat translations 

l J 
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PAT 



oad 



ZOOM 


TECHNOLOGIES 


y 


* Many private IP addresses are mapped to one public IP address. 

* Configured for outbound traffic (LAN to Internet) 

* All users can access Internet at the same time. 
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How does PAT works ? 


ZOOM 

\TECH 


MOLGGIES 


D 



How does PAT works ? 


Source IP and Port 
Destination IP and Port 


132,168.201.10 - 5000 



Fa 0/0 
192.168.201.1 



ZOOM 

^TECHNOLOGIES 




INSIDE GLOBAL 

TRANSLATION TABLE 

INSIDE LOCAL OUTSIDE LOCAL 

OUTSIDE GLOBAL 

202,1.0,18 :S0O 0 

192, 163, 201, 10: 50 00 61.0.0,10 - 80 

61,0,0,10 - 80 

J 



- 



1 


Source IP and Port 


DATA 


Destination IP and Port 

http 

replv 

202,1,0,18 - 5000 

' r f 



Interface 

Network ID / Mask 

Fa 0/0 

192.163.201.0/24 

S 0/0 

202.1.0.16/29 
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How does PAT works ? 


ZOOM 

CHMQLQGIES. 




■ 


Source IP and Port 
Destination IP and Port 


61.0.0.10 - SO 



|| lllll 


DATA 


http 
request 


202 . 1 . 0 . 


Source JP and Port 


202.1.0,18 - 5001 


Destination IP and 




Fa 0/0 
192.168,201,1 


INSIDE GLOBAL 


202.1.0. IB 


202,1,0,18 :50Ol 


Switch 


J 

n 

i i 

L 



interface Network ID / Mask 


Fa 0/0 
S 0/0 


192.168.201.0/24 

202.1.0.16/29 


TRANSLATION TABLE 

INSIDE LOCAL OUTSIDE LOCAL 


192. 168. 201. 10 


61.0.0.10 - SO 


OUTSIDE GLOBAL 


192.168.201.20:6000 61.0.0.10 - 80 


61.0.0.10 - 80 




How does PAT works ? 


Source IP and Pert 
Destination IP and Port 


192,168.201.20 - 5000 



Source JP and Port 
Destination IP and Port 


61,0,0,10 - 80 


202,1.0,18 - 5001 


Fa 0/0 
192.168.201.1 


INSIDE GLOBAL 



TRANSLATION TABLE 
INSIDE LOCAL OUTSIDE LOCAL 



202X0,18 5000 192,168,201,105000 61 0.0.10 - 80 

202,1,0,18 5001 192.168.201.205000 61.0.0.10 - 80 


OUTSIDE GLOBAL 


,10 - 80 

.10 - 80 



zoom] 

jtechholocies ^ 


Source IP and Port 

WBBmm 

Destination IP and Port 


202.1,0.18 - S001 





J| — !W 


S Interface 

Network ID ( Mask 

Fa 0/0 

192.168,201.0/24 

S 0/0 

202,1.0.16/29 
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PAT - Configuration 


Defining NAT on Interfaces 


Router 

Router 


# interface cinterfaee type> cinterface number> 
if) # ip nat inside/outside 


Configuring PAT 


Router (config) # ip nat inside source list <acl no.> interface 

< interface type > < interface no. > overload 



PAT - Configuration 


i 


' 

VO 0 1 El 


r. 

G C N P 
C N 



50/0 

202.1.0.13 



Fa 0/0 
192.16S.201.1 



Switch 


INTERNET 



ZOOM 

V ECHNOLOCieS 




Interface Network ID / Mask 


192,168.201 .0/24 
202,1 ,0.16/29 
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PAT - Configuration 


ZOOM 

M ECHHQLQglES 



taap \ 

CHE B configure terminal 

Enter configuration commands, one per line. End with CNTL/Z* 

CHE (config) # interface serial 0/0 
CHE (config-if) # ip nat outside 
CHE (config-if) B exit 

CHE (config) # interface FastEthernet 0/0 
CHE (config-if) # ip nat inside 
CHE (config-if) B exit 

CHE (config) n access-list 10 permit 192,168,201,0 0.0.0.255 

CHE (config) # Ip nat inside source list 10 interface serial 0/0 overload 

> 



PAT - Verification 


ZOOM 

^TECHNOLOGIES 


r ^ 

Router # show ip nat translations 
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Ill 








ZOOM 


'ECH NO LOGIES 



* Syslog is a protocol that allows a network device to send their system 
messages/notification across the network to message collectors 

* Syslog is typically used for network management and security auditing. 

* Syslog uses the UDP port number 514. 

* Device can be configured to forward syslog messages to various destination 

- Buffer : send syslog messages to internal memory buffer 

- Syslog Server : send syslog messages to syslog server 



Message Severity Levels 


ZOOM 

V ECH NO LOGIES 



Level 

Level Name 

Explanation 

0 

Emergency 

The System may be unusable 

1 

Alert 

Immediate action may be required 

2 

Critical 

A critical event took place 

3 

Error 

A router experienced an error 

4 

warning 

A condition might warrant attention 

5 

Notification 

A normal but significant condition occurred 

6 

Informational 

A normal event occurred 

7 

Debugging 

The output is a result of a debug command 
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How Syslog Works ? 


ZOOM 

ECHHQLQglES 



Interface 

Down 


SO/l 



Switch 


' Pi .^0 f ifa " 

'>+■*■ -lAV.-m -umf.il- J 

1<C 1 Ip- Ml 1 » 



Syslog Server 


■uu.i Tlai! Iirn-jl pj . 

|L => 


~n 
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Syslog Message Format 


ZOOM 

V TECH HO LOGICS 
^ , 



Timestamp Severity Level Description 



Sep 22 2016 15:24:53*080 : %LINK-5-CMAIMGED: Interface Serial 0/0, changed state to administratively down 
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Logging to Buffer - Configuration 


ZOOM 

v ECHHQLQglES 



Router (config) # logging on 

Router (config) # logging buffered <level> 





ICC 111 


r* 

CCNP 
C N 



Logging to Syslog Server - Configuration 


ZOOM 

^TECHNOLOGIES 


Router (config) # logging on 

Router (config) # logging host <server ip address> 

Router (config) # logging trap <level> 

Router (config) # service timestamps log datetime msec 
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Logging to Syslog Server - Configuration 


ZOOM 

Vi CHNOLOOIES 




Computer IP Address 
192.168.202.10/24 



Logging to Syslog Server - Configuration 


ZOOM 

V ECH HO LOGIES 




HYD-1 (config) # logging on 

HYD-1 (config) ft logging host 192.168.202.10 

HYD-1 (config] ft logging trap 1 

HYD-1 (config) ft service timestamps log datetime msec 
* 4 


/ - . . - \ 

w 


HYD-1 (config) ft logging on 
HYD-1 (config) ft logging buffered 7 
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ZOOM 

TECHNOLOGIES 


Router# show logging 
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Manual Clock 


ZOOM 

v ECHHQLQglES 


u 


* Manually setting the clocks of network device is neither accurate nor scalable. 

* The best practice is to use Network Time Protocol (NTP) 



Date and Time - Configuration 


ZOOM I 


Router# clock set <hh:mm:ss> <dd mm yyyy> 
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Date and Time - Verification 


Router # show clock 


ZOOM 

V E CM MO LOGIES 





Network Time Protocol (NTP) 


ZOOM 

ECH MO LOGIES 



* NTP (Network Time Protocol} is used to synchronize the time throughout 
network devices i.e. servers, switches, routers, wireless access points, etc. to 
synchronize their clocks with a central source clock. 

* NTP works on UDP port 123 for both the source and destination by default. 

* NTP can get correct time from internal and external source. 

* Normally a router or switch will run in NTP client mode which means that it 
will adjust its clock based on the time of a NTP server. 
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NTP - Configuration 



ZOOM 

\JECHNQ LOGIES 



NTP - Configuration 


r 



VO 0 1 El 


1 

c 

G C N P 
C N 




ZOOM 

\TE CH 


HO LOGIES 




Interface 

Network ID / Mask 

Fa 0/0 

192,168.201,0/24 


so/o 


202.1 .0.16/29 
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NIP - Configuration 


ZOOM 

V ECH HQ LOGIES 



CHE « configure terminal 
Enter configuration commands, one per line. End with CNTL/Z, 
CHE (config) # ntp server 8.8.S.S 
CHE (config) # exit 





/ 



IMTP - Verification 


ZOOM 

ECHHOLOGICS 



Router # show clock 

Router # show ntp associations 

Router # show ntp status 
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SNMP 


ZOOM 

k^TECHMOLOGIES 


* SNMP is an application layer protocol, uses the UDP port number 161. 

• It provides a message format for communication between Network Devices 
(Agents) and Network Manager. 
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SNMP Components 


ZOOM 

v ECHNOLOOIES 




* SNMP Managers 

- it Is software that collects information from network devices (i.e. NMS) 

* SNMP Agents 

- SNMP enabled network devices i.e. Router, Switch, Server, etc. 

* Management Information Base: 

- Contains the database of objects (information variables) 



How SNMP Works? 


ZOOM 

^TECHNOLOGIES 
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Management Information Base 


ZOOM 

CHNOLOOIES 




* MIB defines each variable as object id (OID), 

* Organizes that into a hierarchy of 01 Ds, usually shown as tree. 


iso ( i > 


▼ 

org (3) , 

i 

clod 

Internet (i) 

private (4), 

▼ 

enterprisna (1). 


cisco (9). 



local variables (?), 


cisco mgml (9), 

1 

T 

Interface group <2) 


cisco flash group (iO), 



SNMP versions 


ZOOM 


TECHNOLOGIES 



SNMP 

version 

Security 

Bulk Retrieval 

Information 

Version 1 

Plain authentication with community string 

NO 

Version 2 

Plain authentication with community string 

YES 

Version 3 

Strong authentication, confidentiality and integrity 

YES 
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SNMP - Configuration 





Router {config) # snmp-server community <string> 

< ro | rw > 

Router (config) # snmp-server host <server ip address> 

version <snmp version> <string> 
Router (config) # snmp-server enable traps 


ZOOM 


\te 


ECH HO LOGIES 







SNMP - Configuration 


ZOOM 



FO/C 

192 , 168 , 202 , 1/24 


Switch 



Computer IP Address 
19 Z, 168, 202,10/24 



' 

ICGlEl 


r. 

G C N P 
C N 
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SNMP - Configuration 


ZOOM 

Vi CH MO LOGIES 




HYD-1 (config) # snmp-server community public rw 

HYD-1 (config) # snmp-server host 192.168.202.10 version 2c public 

HYD-1 (config) U snmp-server enable traps 

HYD-1 (config) # exit 

^ 



SNMP - Verification 


ZOOM 

^ECHMQLOGieS 


Router # show snmp community 
Router # show snmp host 
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Dynamic Host Control Protocol (DHCP) 


ZOOM 

^^TECHNOLOGIES 


* Dynamic Host Control Protocol is used for dynamic IP address assignment to 
network devices / hosts. 

* DHCP server provides IP address, Subnet mask, Default gateway and DNS 
server IP address to DHCP clients. 

* Router can be configured both as a DHCP Server and DHCP Client. 
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DHCP Server - Configuration 


Router (config) # ip dhcp pool < name > 

Router (dhcp-config) # network < network address > < subnet mask > 
Router (dhcp-config) # default-router < router ip address > 

Router (dhcp-config) # dns-server < dns server ip address > 

Router (dhcp-config) # lease < days > < hours > <minutes> 

Router (dhcp-config) # exit 

Router (config) # ip dhcp exduded-address <start addres$> <end address> 
Router (config)# exit 



DHCP Server - Configuration 



ZOOM 

V ECHNOLOCieS 





ITT 



Interface 

Network ID / Mask 

Fa 0/0 

192,168.201,0/24 


i 


' 

ICGlEl 


r. 

G C N P 
C N 



so/o 


202.1 .0.16/29 
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DHCP Server - Configuration 


ZOOM 

CHNOLOOIES 



marf \ 

CHE # configure terminal 

Enter configuration commands, one per line. End with CMTL/Z. 

CHE (config) # ip dhcp pool loom 

CHE (dhcp-config) # network 192-168.201-0 255-0.0.0 

CHE (dhcp-config) # default-router 192.168.201.1 

CHE (dhcp-config) # dns-server 8. 8. 8. 8 

CHE (dhcp-config) # lease 111 

CHE (dhcp-config) #exit 

CHE (config) U ip dhcp excluded-address 192.168.201.1 192.168.201.50 
CHE (config)# exit 

/ 



DHCP Server - Verification 


ZOOM 

ECHMOLOCIES 


r i 

Router # show ip dhcp binding 
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DHCP Client - Configuration 


ZOOM 


TECHNOLOGIES 


Router (config) # interface interface type> <interface no,> 


Router (config- 
Router (config- 
Router (eonfig- 


If) # ip address dhcp <poo! name> 
if) # no shutdown 
if) # exit 



DHCP Client - Configuration 



ZOOM 

ECHNOLOCIES 






Interface 

Network ID / Mask 

Fa 0/0 

192,168.201,0/24 


r 


' 

ICGlEl 


r. 

G C N P 
C N 



so/o 


202.1 .0.16/29 
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DHCP Client - Configuration 


ZOOM 

v ECHMOLQglES 


u 



CHE# configure terminal 

Enter configuration commands, one per line. End with CNTL/Z, 

CHE (config)# interface serial 0/0 

CHE (eonfig-if)# ip address dhcp zoom 

CHE (config- if)# no shutdown 

CHE (config-if)# exit 

CHE (config)# 



DHCP Client - Verification 


ZOOM I 


.•f % 


Router # show interface interface type> <interface no> 
Router # show ip interface brief 


\ / 
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Neighbor Discovery 


ZOOM 

v ECHHQLQglES 


D 


• IPv6 Neighbor Discovery is a set of messages and processes that determine 
relationships between neighboring nodes. 

* Neighbor Discovery replaces ARP, ICMP Router Discovery, and ICMP Redirect 
used in IPv4 and provides additional functionality. 



Neighbor Discovery Message - NS & NA 


ZOOM 

CH HO LOGICS 


u 


* Neighbor Solicitation (NS) 

- Message used by Host for requesting Neighbor Host Mac Address 

* Neighbor Advertisement (NA) 

- Message used by Neighbor Host for replying Mac Address to requesting Host 
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Neighbor Discovery Message - NS & NA 


ZOOM 

^ TECHNOLOGI ES 



Fa OH 


Fa 0/1 






Neighbor Discovery Message - RS, RA & Redirect 


ZOOM 

.TECH NO LOGICS 

* 



* Router Solicitation (RS) 

- Message used by Host for requesting Router IP Address 

* Router Advertisement (RA) 

- Message used by Router for replying to the Host with Router IP Address 

* Redirect. 

- Message used by Host for requesting change of IP Address to Router. 
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eighbor Discovery Messages 


ZOOM 




ECH MO LOGIES 



Fa OH 


Fa 0/1 







IPv6 Address Assignment 
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IPv6 Address Assignment 


ZOOM 

\TE CHNOLOOIES 





Host Configuration 


ZOOM 

^TECHNOLOGIES 


MAC address of Local system 


001CC01242EA 



F F F E 

001C:C0FF:FE12:42EA 


7 th Initial Bit of MAC will be always "1" 



021C:C0FF:FE12:42EA 
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IPv6 EU1-64 & SLAAC - Configuration 


ZOOM 

v ECHHQLQglES 



Assigning IPv6 Address using EUI-64 


Router (config) # ipv6 unicast-routing 


Router (config) tt interface <interface type> cinterface no.> 

Router (config-if) tt ipvG enable 

Router (config-if) # ipv6 address <IPv6 address> <prefix length> eu -64 


Assigning IPv6 Address using SLAAC 


Router (config) tt ipv6 unicast-routing 


[ECU 
e c N 
BEN 


Router (config) tt interface < interface type> cinterface no.> 

Router (config-if) tt ipv6 enable 

Router (config-if) tt ipv6 address autoconfig 

m 


IPv6 EUI-64 & SLAAC - Configuration 


ZOOM 

^TECHNOLOGIES 





' 

VO 0 1 El 


r. 

G C N P 
C N 
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IPv6 EUI-64 & SLAAC - Configuration 


ZOOM 

Vi CH MO LOGIES 




HYD-1 (config) # ipv6 unicast -routing 

HYD-1 (config) # interface FastEthernet 0/0 

HYD-1 (config-if ) # ipv6 enable 

HYD-1 (config-if) # ipv6 address 2001:5555::/64 eui-64 



HYD-2 (config) # ipv6 unicast-routing 
HYD-2 (config) # interface fast Ethernet 0/0 
HYD-2 (config-if) # ipv6 enable 
HYD-2 (config-if) # ipv6 address autoconfig 



IPv6 EUI-64 & SLAAC - Verification 


ZOOM 

V ECHMQLOCieS 


Router # show interface cinterfaee type > interface no. > 
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Importance of Redundancy 



ZOOM 

k^TECH NO LOGICS 




Interface 

Network ID / Mask 

Fa 0/0 

192,168.201.0/24 

S0/0 

202,1 .0.16/29 
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Single point of Failure 


Fa 0/0 
192.168.201J 



ZOOM 

Vi CHNOLOOIES 



INTERNET 



Interface 

Network ID / Mask 

Fa 0/0 

192.1 68.201 .0/24 



First Hop Redundancy Protocol (FHRP) 


ZOOM 

^TECHNOLOGIES 


* First Hop Redundancy Protocols (FHRP) are a group of protocols that provide 
Default Gateway Redundancy if there is more than one path to the same 
Destination. 


• The following are FHRP: 

- HSRP (Cisco Proprietary) 

- VRRP (IETF Standard) 

- GLBP (Cisco Proprietary) 
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Hot Standby Router Protocol {HSRP) 


ZOOM 

v ECHHQLQglES 


u 


* HSRP is a Cisco proprietary protocol. 

* HSRP groups multiple physical routers 

- i.e. Active router and Standby router into a single virtual router. 

* Virtual IP and Mac-addresses are shared between these two physical routers. 

* Routers which are grouped together must be assigned the same group number, 
which can range from 0 to 255 

* So when a router goes down or the link into the router fails, there is a second 
physical device ready to respond to the same default gateway address 
information 



How HSRP works ? 


ZOOM I 




INTERNET 


Rrionty-150 


$ 0/1 


Active Router 


Active Router 


Fa 0/0 
192.168.201.100 


Virtual IP - 192.168*201.254 


Fa 0/0 

192.168.201.200 




Interface 

Network ID / Mask 

Fa 0/0 

192.168.2010/24 


SQ/0 202.1.0.16/29 




Default Gateway 


192.168.201.254 
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SR 


i 



ZOOM I 

ECHMQLQglES^ 


* Uses multicast messages to communicate priority with other routers. 

* Default priority is 100. 

* Router with the highest priority will be the Active Router and second highest 
will be the Standby Router 

* If the priorities are the same, the first router up becomes the primary. 

* The default hold timer is 10 seconds and hello timer is 3 seconds. 

* Hello Messages uses multicast address 224.0.0.2 for version 1 using 
UDP port 1985. 



HSRP 



ZOOM 


TECHNOLOGIES 



* Active router: 

- Actively forwards the user traffic. 

- Sends the reply for ARP messages requested for virtual mac address. 

- Knows the Virtual Router IP Address. 

- Sends hello messages. 


* Standby router: 

- Backup for active router. 

- Sends hello messages. 

- Whenever hello is not received, it takes the role of active router and 
forwards user traffic. 

/ mm 

|| — 
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HSRP Version 


ZOOM 

v ECHHQLQglES 



k A 


A 


HSRP Version 1 


k A 


Hello Messages uses multicast 
address 224.0.0.2 
Group number range from 0 
to 255 


HSRP Version 2 


w 

k 


Hello Messages uses multicast 
address 224.0.0.102 
Group number range from 0 
to 4095 


r 



ICC 111 



CCNP 
C N 




HSRP - Configuration 


ZOOM 


TECH HO LOGIES 


Router (config) # interface < interface type > < no. > 

Router {config-if) # standby < hsrp group no. > ip < virtual ip address> 

Router (config-if) # standby < hsrp group no. > priority <priority> 

Router (config-if) ft standby < hsrp group no. > preempt 

Router (config-if) ft standby version { 1 | 2 } 
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HSRP - Configuration 


ZOOM 

CHNOLOOIES 





INTERNET 


SO/l 


Priority-150 


Standby Router 


FaQ/0 
192. 168, 2 01.100 


Virtual IP - 192.168.201,254 


Fa O/O 

192 , 163 , 201.200 


Interface 

Network ID / Mask 

Fa 0/0 

192.163.201.0/24 


S 0/0 202.1.0.16/29 




Interface 

Network ID / Mask 

Fa 0/0 

192.168.201.0/24 


S 0/0 202.2.0.10/29 



Default Gateway 


192.163.201.254 



HSRP - Configuration 


ZOOM 

^^TECHNOLOGIES 


^ > 



R1 (config) # interface fastEthernet 0/0 


R2 (config) # interface fastEthernet 0/0 

R1 (config- if) # standby 10 ip 192.168.201.254 


R2 (config-if) # standby 10 ip 192.168.201.254 

R1 (config-if) # standby 10 priority 200 


R2 (config-if) U standby 10 priority 150 

R1 (config-if) # standby 10 preempt 


R2 (config-if) # standby version 2 

Rl (config-if) # standby version 2 


* 
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SRP - Verification 


U 


zoom] 

v ECHMQLQglES^ 


r ^ 

Router # show standby 

L j 
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Importance of WAN Redundancy 



Global DNS 
8.8.8. S 

INTERNET 


ZOOM 

v ECHHQLQglES 



50/0 

202X0,1® 



5 0/0/1 
202.1.0.17 




SO/l 
202X0.17 


5 0/0/0 
202,2.0.17 


Fa 0/0 

192.168.202.1 


BEWMM 




Interface 

Network ID / Mask 

Fa 0/0 

192.168.202.0/24 


S 0/0/0 202.1 ,0.16/29 

S0/0/1 202.2.0.16/29 



Floating Static Route 


ZOOM 

^TECHNOLOGIES 



* Floating static routes are static routes configured to provide a backup path in 
event of a link failure of primary static or dynamic routes. 

* The floating static route is only used when the primary route is not available. 

* Floating static route is configured with a higher administrative distance than 
the primary route. 
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Floating Static Route - Configuration 


Router 


# ip route < Destination Network ID > 

< Destination Subnet Mask > < Exit Interface Type > 

< Exit Interface No. > < Administrative Distance > 



Floating Static Route - Co 




ZOOM 
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Interface 

— — 1 

Network ID / Mask 

Fa 0/0 

192*1 68.202.0/24 

| S 0/0/0 

202*1*0.16/29 

S 0/0/1 

202*2.0.16/29 
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Floating Static Route - Configuration 


ZOOM 


M! 
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HYD-1 (config) # ip route O.Q.Q.O 0.0. 0.0 Serial 0/0/1 
HYD^l (config) # ip route 0.0.0.0 0.0.0.0 Serial 0/0/0 2 





Floating Static Route - Verification 




Router # show ip route 


\ 


ZOOM 

ECHMOLOOIES 
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IP SLA 


□ 


ISP1 DNS 



ZOOM 

\tech 


HO LOGIES 


y 


Interface Network ID / Mask 



Fa 0/0 
S 0/0/0 
S 0/0/1 


192.168.202.0/24 


202.1.0. 16/29 

202.2.0. 16/29 
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IP SLA 


ZOOM 

v ECHHQLQglES 




* IP SLAs is a feature included in the Cisco 105 Software that can allow 
administrators the ability to Analyze IP Service Levels for IP applications and 
services. 


* IP SLA's uses active traffic-monitoring technology to monitor continuous 
traffic on the network. This is a reliable method in measuring over head 
network performance. 

* The best and simplest way to achieve WAN redundancy on Cisco devices is to 
use Reliable Static backup routes with IP SLA tracking. 



IP SLA -Configuration 

Router (config) # ip sla <operation-number> 

Router (config-ip-sla) # icmp-echo destination ip address> 
Router (config-ip-sla-echo) # frequency < seconds > 

Router (config-ip-sla-echo) # exit 


Router (config) # ip sla schedule <operation-number> start-time now life forever 
Router (config) # track < object-number > ip sla <operation-number> 

Router (config-track) # delay down <seconds> up <seconds> 

Router (config-track) # exit 


Router 


# ip route destination network> destination subnet mask> 
cnext hop ip address> track < object-number > 


ICC III 

c N 
C N 
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IP SLA - Configuration 



ISPl DNS 
1. 1.1,1 


Fa 0/0 

192.1GS.202.1 


ZOOM 

\ tech 


MOLOGIES 



isp 2 nm 
z.z.z.z 



Interface Network ID 1 Mask 



Fa 0/0 

S 0/0/0 
S 0/0/1 


192.160.202.0/24 

202.1.0. 16/29 

202.2.0. 16/29 



IP SLA - Configuration 


ZOOM 
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HVD-1 (config) # ip $\a 1 
HVD-1 {config-ip-sla} # icmp-echo 14,1.1 
HVD-1 (config-ip-sla-echo) tt frequency 5 
HVD-1 (config-ip-sla-echo) # exit 



HVD-1 (config) # ip sla schedule 1 start-time now life forever 
HVD-1 (config) # track 10 ip sla 1 
HVD-1 (conf ig-traek) # delay down 20 up 10 
HVD-1 (config-trackj # exit 

HVD-1 (config) # ip route 0.0.0.0 0.0.0.0 202X0.13 track 10 
HVD-1 (config) # end 


HVD-1 # 
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IP SLA - Verification 


zoom] 
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Router # show ip route 
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Local Database Authentication 


ZOOM 
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* Usernames and Passwords are created on the device. 

* It provides better security than a simple password. 

* It is a cost effective and easily implemented security solution. 



Local Database Authentication - Configuration 



Router (config) # username cuser name> password < password > 


Router (config) # line vty 0 4 
Router (config-line ) # login local 
Router (config-line ) # end 
Router (config) # 
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Local Database Authentication - Configuration 


ZOOM 

v ECHNOLOGIES 




Computer IP Address 
192.168.202.10/24 



Local Database Authentication - Configuration 


ZOOM 
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HYD-1 (config)# username zoom password cisco 
HYD-1 (config) # line vty 0 4 
HYD-1 (conflg-line) # login local 
HYD-1 (config-linej# end 

^ 4 
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Disadvantage of Local Database Authentication 


ZOOM 

\ TECHNOLOGIES 

^ 




* Local Database needs to be replicated on all network devices 

* Better and Scalable solution is to use AAA Server. 
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AAA 


ZOOM 

CHNOLOOIES 




* Authentication 

- Authentication provides the method of identifying users 

* Authorization 

- Authorization provides a method of controlling access to what a user can do. 

* Accounting 

- Accounting provides a method for collecting and sending security server 
information used for billing, auditing and reporting. 



AAA Advantages 


ZOOM 

^TECHNOLOGIES 


* Increased flexibility and control of access configuration 

* Scalability 

* Multiple backup systems 

* Standardized authentication methods 
- RADIUS, TACACS+ and Kerberos 
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AAA Protocols 


ZOOM 
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* Terminal Access Controller Access Control System (TACACS) 

* Remote Access Dial In User Service (RADIUS) 



TACACS v/s RADIUS 


ZOOM 

^TECHNOLOGIES 


r 1 

TACACS 1 

L — J 

r i 

RADIUS 

• TACACS+ is Cisco proprietary 1 

protocol 1 

• TACACS+ uses TCP as Transport 1 

Layer Protocol 1 

• TACACS+ encrypts the entire 1 

communication 1 

• TACACS+ treats Authentication, 1 

Authorization and Accountability I 

differently 1 

L J 

* RADIUS is supported by multiple ' 
vendors 

* RADIUS uses UDP as Transport 
layer Protocol 

* RADIUS encrypts passwords only 

* RADIUS combines Authentication 
and Authorization 


/ rrm 

1 — !W 


322 







AAA Server Based Authentication - Configuration 


ZOOM 
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Router {config) # aaa new-model> 

Router (config! # tacacs-server host < server ip address > 

Router (config! # tacacs-server key < secret key > 

Router (config) # aaa authentication login default group tacacs local 





AAA Server Based Authentication - Configuration 


ZOOM 

ECHNOLOCieS 



Comp Liter IP Address 
19 Z, 168, 202,10/24 


' 

VO 0 1 El 


r. 

G C N P 
C N 
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AAA Server Based Authentication - Configuration 


ZOOM 

\TE CHNOLOOIES 


u 




HYD-1 (config) # aaa new-model 

HYD-1 (config) tftacacs-server host 192.163,202.10 

HYD-1 (config) tacacs-server key cisco 

HYD-1 (config) ti aaa authentication login default group tacacs local 
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Telnet 


ZOOM 

\TE CHNOLOGIES 


u 


* Telnet is used to remote login on the Network devices for configuration. 

* It works on TCP Port 23. 

* Data is sent in clear text between host and network device, it is not secure 
communication. 



Secure S 



ZOOM 


TECHNOLOGIES 


y 


* SSH is used for securely remote login on the Network devices for configuration. 

• It works on TCP Port 22. 


* It provides data encryption between host and network device. 

* Cisco IOS should support encryption for enabling SSH. 
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SSH - Configuration 


ZOOM 
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r 1 

Router (config) # ip domain-name < domain name> 

Router (config) # crypto key generate rsa 
Router (config) # line vty 0 4 
Router (config-line) # login local 
Router (config-line) # transport input ssh 
Router (config-line) # end 

L J 



SSH - Configuration 
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FO/C 

192 , 168 , 202 , 1/24 


Switch 



Computer IP Address 
19 Z, 168, 202,10/24 



' 

VO 0 1 El 


r. 

G C N P 
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SSH - Configuration 


ZOOM 
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r 

HYD-l (config) # ip domain-name zoom.com 
HYD-l (config) U crypto key generate rsa 
HYD-l (config} # line vty 0 4 
HYD-l (config-line) # login local 
HYD-l (config-line) # transport input ssh 
HYD-l (config-line) # end 





J 
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Communication via Internet 


ZOOM 
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internet 





Virtual Private Network 


ZOOM 
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* It provides a private communication channel over a public network. 

* Provides security 

* Provides point to point connectivity 

* Scalability 



328 









ZOOM 

v ECHMOLOCIES. 



Features of VPN 


ZOOM 
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* Confidentiality (Privacy) 

* Authentication 

* Data integrity 

* Anti-replay 
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Types of VPN 


* GRE 

* IPSecVPN 

* SSL VPN 

* DMVPN (Dynamic Multipoint VPN) 


ZOOM 

\jECH 


MOLGGIES 


D 



Generic Routing Encapsulation ( 



ZOOM 


TECHNOLOGIES 


y 


* GRE is a tunneling protocol that was originally developed by Cisco. 

* GRE provides tunneling of Non-IP traffic (IPX and Appletalk) and Multicast 
traffic (which is not done by IPSec). 

* However, GRE provides only tunneling without any encryption. 


NOTE : 

Static Route should be configured towards remote LAN network via tunnel 
interface 



330 






GRE - Configuration 


Router (config) # interface tunnel < no, > 

Router (config-if) # ip address < address > < subnet mask > 

Router (config-if) # tunnel source < tunnel source ip address > 

Router (config-if) # tunnel destination < tunnel destination ip address > 
Router (config-if) # end 



GRE - Configuration 



Fa 0/0 
192.168.201.1 


Switch 



Interface 

IMet work ID / Mask 

Fa 0/0 

192.168,201.0/24 

S0/0 202.1.0.16/29 


zoom] 

Vi ECHNQLOCI&S^ 


Fa 0/0 

192.168.203.1 


Switch 



Interface 

Network ID / Mask 

Fa 0/0 

192.168,203.0/24 

SG/0 202.2.0.16/29 
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GRE - Configuration 


ZOOM 
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CHE (config) # int tunnel 0 

CHE (config-if) # ip add 1.1. 1.1 255.255.255.0 

CHE (config-if) # tunnel mode gre ip 

CHE (config-if) # tunnel source serial 0/0 

CHE (config-if) # tunnel destination 202.2.0.18 

CHE (config-if) # end 

- / 



BAN (config) # int tunnel 0 

BAN (config-if)# ip add 1.1. 1.2 255.255.255.0 

BAN (config-if) #* tunnel mode gre ip 

BAN (config-if)# tunnel source serial 0/1 

BAN (config-if)# tunnel destination 202.1.0.18 

BAN (config-if)# end 

^ / 



GRE -Verification 


ZOOM 
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/ 


Router It show interface tunnel < no.> 


\ 
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Password Recovery - Steps 


* Connect the console cable from Router console Port to PC COM port 

* Open the Emulation Software (Putty) 

* Restart the Router 

* Press Ctrl + Break to Enter into Rommon mode 


ZOOM 

k^TECHMQLOGieS 
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Console Connectivity 


ZOOM 
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D 




Console Port ^ 


RJ-45 


Rollover 

Cable 


RJ-45 to DB-9 
Converter 


Computer 


Password Recovery 


ZOOM I 
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Password Recovery - 


f Sequence 

zoom] 

k^TECHMOLOCIES^ 


Power On Self Test - checks the hardware 


~ . — 


ROM loads Bootstrap program and searches for the IOS 



IOS from Flash is loaded 




Boot process is completed bypassing startup configuration 


POST 



RAM 



Configuration Register - 0x2142 





Password Recovery - Steps 


ZOOM 

ECHNOL0QIES 


r ^ 

Rommonl > confreg 0x2142 
Rommon2 > reset 

L J 
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Password Recovery - Steps 


ZOOM 
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Router > enable 

Router # copy startup-config running-config 

Router # configure terminal 

Router {config) # enable secret < new password > 

Router (config) # interface FastEthernet 0/0 

Router (config-if) # no shutdown 

Router (config) # exit 

Router (config' # config-register 0x2102 

Router (config) # end 

Router# write 


Router# reload 
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PPP over Ethernet (PPPoE) 


ZOOM 
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* PPP over Ethernet (PPPoE) is a method of encapsulating PPP frames so that 
they can be sent over an Ethernet network. 

* PPPoE is generally used by Internet Service Providers (ISPs) to provide 
Broadband Internet access based upon user authentication. 

* We can configure Cisco router as PPPoE Client for Broadband Internet Access. 



PPPoE Client - Configuration 


Router 

Router 

Router 

Router 

Router 

Router 

Router 

Router 

Router 

Router 

Router 

Router 

Router 

Router 


(config) # interface < ether net interface > < no. > 

(config-if) # no ip address 

(config-if) # pppoe enable 

(config-if) # pppoe-client dial-pool-number <no.> 

(config-if) # exit 

(config) # interface dialer < no. > 

(config-if) # mtu 1492 
(config-if) # ip address negotiated 
(config-if) # encapsulation ppp 
(config-if) # ppp authentication pap callin 

(config-if) # ppp pap sent-username < username > password < password > 
(config-if) # dialer pool < no. > 

(config-if) # ppp ipcp route default 
(config-if) # end 


ICCItl 
c N 
c N 
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PPPoE Client - Configuration 
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Interface 

Network ID / Mask 

Fa 0/0 

192,166,202.0/24 



PPPoE Client - Configuration 


ZOOM 
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HYD-1 (config) # interface fastethernet 0/1 

HYD-1 (config-if) # no ip address 

HYD-1 (config-if) # pppoe enable 

HYD-1 (config-if) # pppoe-client dial-pooi-number 1 

HYD-1 (config-if) # exit 

HYD-1 (config) # interface dialer 1 

HYD-1 (config-if) # mtu 1492 

HYD-1 (config-if) # ip address negotiated 

HYD-1 (config-if) # encapsulation ppp 

HYD-1 (config-if) # ppp authentication pap callin 

HYD-1 (config-if) # ppp pap sent-username cisco password ccna 

HYD-1 (config-if) # dialer pool 1 

HYD-1 (config-if) # ppp ipcp route default 
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PPPoE Client - Verification 


/ 


Router # show interfaces dialer <no. > 





ICC 111 


r. 
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MCSE-2012 Fun Course 


MICROSOFT CERTIFIED SOLUTIONS EXPERT 


Practical in real-time environment. Detailed curriculum with all 5 papers 

Duration: 1 Month [ 4 Hr s Per Day (starts on 1 5 th & 30 th of every month) 
Batches: Morning: 9.30 to 10.30 • Afternoon: 2.00 to 4,00 • Evening: 7,30 to 9.30 


CCNA (v 2.0) Full Course 






, 


CISCO CERTIFIED NETWORK ASSOCIATE 


& Live Channelised El 

Duration: 1 Month | 4 Hrs Per Day (starts on is^a 30 th of every month) 
Batches: Morning: 9.30 to 10.30 * Afternoon: 2,00 to 4,00 • Evening: 7.30 to 9.30 


Complete Package 





Practicals on Live Web Administration + Integration of Windows with Linux/ Unix (Samba Server) 
Duration: 2 Weeks | 4 Hrs Per Day (starts or 1 5 th & SO" 1 of every month) 
Batches: Morning: 8.00 • Afternoon: 1.30 * Evening: 7.0D 



Fees: ? 5,900/- 

+ 15% Service Tax 

Duration: 3 Months 
4 Hrs Per Day 
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Ethical Hacking* Cyber Security and Firewall 
VMware vSphere and MS Private Cloude 


Open Source: A glimpse into advance Linux 
Cisco WAN Technology & Collaboration 



Free MCSi 



Practice 



H 


Ethical Hacking a 

Countermeasures Expert 

Course is mapped to EHCE course from US-Councll (www.us-council.com) 

(Pro requisite is CCNA / MCSE / LINUX) 

Duration: 2 Weeks | 4 Hrs Per Day (starts on 1 s* 1 & 30 th of every month) 
Batches: Morning: 7.30 or Evening: 6.00 


Fees: ? 9, 

+ 15% Service Tax 


CCNP R&S 



[cisco certified network professional 


Duration: 1 Month | 4 Hrs Per Day (starts on 15 1h of every month) 
Batches: Morning: 7.30 • Afternoon: 2.00 * Evening: S.00 
• Labs on latest routers with IOS version 15, X 


Monitoring, Diagnostics & Troubleshooting Tools 

• PRTG • Wireshark • SolarWinds, etc. 


Exam Practice Challenge Labs 


CCIE R&S 


[cisco certified internetwork expert 


Duration: 1 Month | 4 Hrs Per Day (starts on 15 1h of every month) 
Batches: Morning: 7.30 * Evening: 6.00 

• Individual Rack For Every Student 

• Real time scenarios by 20+ years experienced CCIE certified industry expert who 
has worked on critical projects worldwide. 



Fees: 

Introductory Special Offer 

Fees: ? 5,500/- 

+ 15% Service Tax 


Written + Lob Exam Focus 


FREE Full Scale 8 Hours Exam Lab Included 


Unlimited Lab Access For 1 Year 




Fees: 

Introductory Special Offer 

Fees: ? 9,990/- 

+ 1 5% Service Tax 










MICROSOFT EXCHANGE SERVER-2013 

Duration: 2 Weeks | 4 Hrs Per Day (starts on is" 1 & 30““ of every month) 
Batches: (Contact the Counselors for the next available batch) 


MICROSOFT PRIVATE CIOOD 


Microsoft Certified Solutions Expert [MCSE] Private Cloud 


Duration: 2 Weeks | 4 Hrs Per Day 

Batches; (Contact the Counselors for the next available batch) 




I 


Duration: 2 Weeks | 4 Hrs Per Day (starts on 15 1h & 30 th of every month) 
Batches: (Contact the Counselors for the next available batch) 


Fees: f 2,500/- 

+ 15% Service Tax 


Fees: 2,500/- 

+ 15% Service Tax 



Fees: ? 2,500/- 

+ 15% Service Tax 


CCNA SECURITY 


(Pre requisite is CCNA R&S) 


CISCO CERTIFIED NETWORK ASSOCIATE - SECURITY, 


Duration: 2 Weeks | 4 Hrs Per Day (starts on 15 1h of every month) 
Batches: Morning: 7.30 or Evening: 6.00 


Fees: ? 7,500/- 

+ 15% Service Tax 


CCNP SECURITY 


(Pre requisite is CCNA Security at ZOOM) 


CISCO CERTIFIED NETWORK PROFESSIONAL - SECURITY 


Duration: 2 Weeks | 4 Hrs Per Day (starts on 30 1h of every month) 
Batches: Morning: 7.30 or Evening: 6,00 


Fees: ^ 9,500/- 

+ 15% Service Tax 


CCIE SECURITY 


(Pre requisite is CCNA & CCNP Security at ZOOM) 


CISCO CERTIFIED INTERNETWORK - SECURITY 


Duration: 1 Month | 4 Hrs Per Day 

Batches: (Contact the Counselors for the next available batch) 


Fees:^15,500/- 

+ 15% Service Tax 


VMware vSphere (Pre ret 

Duration: 1 Month | 4 Hrs Per Day 

Batches: Morning: 7.30 and Evening: 7.30 


(Pre requisite is MCSE) 
r Day (starts on 15 th of every month) 


Fees: X 4,950/- 

+ 15% Service Tax 


VMware vCloud 


Wllinnil U VUIUUU (Pre requisite is VMware vSphere) 

Duration: 1 Week I 4 Hrs Per Day (starts on 15 th of every month) 
Batches: Morning: 9.30 to 11.30 


rm 




Duration: 2 Weeks | 4 Hrs Per Day 

Batches; (Contact the Counselors for the next available batch) 


Fees: ? 2,500/- 

+ 15% Service Tax 



Fees: ^ 5,500/- 

+ 15% Service Tax 


We also offer the following courses (Contact the Counselors for the next available batch) 

► CCNA Voice @^7,500/- . CCNA Data Center @ T7,500/- 

► CCNP Voice @ ?9,500/- ► CCNP Data Center @ ?9,500/- 

. CCIE Collaboration @ f 1 5,500/- > CCIE Data Center @ f 1 5,500/- 

> IPv6 Migration @ ?5,500/- 


FACULTY 


► All Senior Engineers of Zoom working on Live projects 

► Training Engineers of British Army, CISCO, CMC, GE, BSNL. Tata Teleservices a 
Several Corporates etc for 18 Years, 


www.zoomgroup.com 



















FREE Training 


Zoom Technologies offers a number of free resources for the professional development of network 
engineers. 

Register on our website to get access to the video recordings of live sessions on: 


■ MCSE - Windows Server 2012 

■ Cisco - CCNA "1 

■ Cisco - CCNP r All Tracks (R & S, Security and Voice) 

■ Cisco -CCIE J 


Exchange Server 2013 
Linux 1 

Advanced Linux J 
Ethical Hacking and Countermeasure Expert (www.us-council.com) 


All Flavors 


Find us at: www.zoomgroup.com 


Like us on Facebook and get access to free online webinars as well as special offers and discounts. 

https://www.facebook.com/ZoomTechnolgies 


Online Training 

Online Training at Zoom is a cost effective method of learning new networking skills from the 
convenience of your home or workplace. 

Taking an online training course has many advantages for everyone (Freshers / Working Professionals). 
Zoom offers online training for the highly coveted CCNA, CCNP and CCIE courses as well as MCSE, 
Linux, VMware, Ethical Hacking and Firewalls, IPv6 with more courses planned for the near future. 
These are live instructor led courses, using Cisco WebEX. Check out our online course offerings at: 

http://zoomgroup.com/online_course 

Job Opportunities 

There is a high demand for network and security professionals at all times. Apart from job opportunities 
in India and the Middle East, network and security administrators are also sought-after in the US and 
Europe. 

If you do not have the right skills, then get them now! Choose the experts in network and security 
training, an organization which has already trained over one hundred thousand engineers. 

For the latest job openings in networking and security, register and upload your resume on: 
http://zoomgroup.com/careers or visit zoom to choose job offering from several multinational 
companies. 





ABOUT US 


ZOOM Technologies India Pvt. Ltd. is a pioneering leader in network and security train- 
ing, having trained over a hundred thousand engineers over the last two decades. 

We offer a world class learning environment, with state-of-the-art labs which are fully 
equipped with high-end routers, firewalls, servers and switches. All our courses are 
hands-on so you'll get much needed practical experience. 

The difference between us and the competition can be summed up in one simple sen- 
tence. Our instructors are real-time network professionals who also teach. 

Zoom has designed, developed and provided network and security solutions as well as 
training to all the big names in the Indian industry, for the public sector as well as corpo- 
rate leaders. Some of our clients are: 

TATA 

BSNL 

VSNL 

Indian Railways 
National Police Academy 
Air Force Academy 
IPCL- Reliance Corporation 
CMC 

British Army 

No other training institute can boast of a customer base like this. This is the reason for 
the resounding success of our networking courses. If you do not have the right skills, then 
get them now. Come, join the experts! 


Training Centers in Hyderabad, India. 


Banjara Hills 

Ameerpet 

Secunderabad 

Dilsukhnagar 

HDFC Bank Building, 2nd Floor, 
Road # 12, Banjara Hills, 
Hyderabad - 500 034 
Telangana, 

India. 

# 2Q3 f 2nd Floor, 

HUDA Maitrivanam, Ameerpet 
Hyderabad - 500 016 
Telangana, 

India. 

Navketan Building, 

5 Floor # 501 
Secunderabad - 500 003 
Telangana, 

India. 

1st Floor, # 1 6-1 1 -477/B/1 &B/2, 
Shlivahana Nagar, Dilsukhnagar, 
Hyderabad - 500 060 
Telangana, 

India. 

Phone; +91 40 23394150 

Email: banjara@zoomgroup.com 

Phone: +91 40 23745252 

Email: ameerpet@zoomgroup.com 

Phone; +91 40 27802461 

Email: mktg@zoomgroup.com 

Phone: +91-40-24140011 
Email: dsnr@zoomgroup.com 


website: www.zoomgroup.com 


